WP-Attacker V4 09-02-2017, 08:50 AM
#1
Coder : Ali (@r00t3rz)
Home : r00t3rz.com
What's WP Attacker:
- Scan the server's websites, and filter the ones that are using WorePress (Using Bing search engin [API]).
- Get All the possible plugins and themese, which are vulnerable (Using a list). *UPDATED*
- BruteForce each website that uses Wordpress (Using a correct username and a passwords list).
- BruteForce each website that uses Wordpress (via XMLRPC's file using a correct username). *NEW*
- Get All the possible plugins and themes, which are vulnerable (Using security dbs). *UPDATED*
- Exploit 'em (Using more than 20 new/0day exploits). *UNDERGROUND*
Why WP Attacker?
- Using Bing API, Which leads to faster & guaranteed responde.
- User can use his own 0day exploits.
- BruteForce with two methods/ways.
- List can be updated by the user.
- Fast, simple and easy.
# In a simple word, it is an "Automatic WP Exploiter".
Disclaimer:
- THIS TOOL WAS WRITTEN FOR EDUCATIONAL PURPOSES. ONLY USE THIS TOOL ON WEBSITES YOU ARE ALLOWED TO TEST
- THE AUTHOR CANNOT AND WILL NOT IN ANY WAY LIABLE FOR ANY LOSS OR DAMAGE ARISING WITH THE USE OF THIS TOOL.
- USE IT UNDER YOUR OWN RISK!
- IF YOU DON'T AGREE WITH WHAT I SAID, PLEASE DON'T USE THIS TOOL.
![[Image: fdd304b083edbc5b60df825f410915aa.png]](https://i.gyazo.com/fdd304b083edbc5b60df825f410915aa.png)
Home : r00t3rz.com
What's WP Attacker:
- Scan the server's websites, and filter the ones that are using WorePress (Using Bing search engin [API]).
- Get All the possible plugins and themese, which are vulnerable (Using a list). *UPDATED*
- BruteForce each website that uses Wordpress (Using a correct username and a passwords list).
- BruteForce each website that uses Wordpress (via XMLRPC's file using a correct username). *NEW*
- Get All the possible plugins and themes, which are vulnerable (Using security dbs). *UPDATED*
- Exploit 'em (Using more than 20 new/0day exploits). *UNDERGROUND*
Why WP Attacker?
- Using Bing API, Which leads to faster & guaranteed responde.
- User can use his own 0day exploits.
- BruteForce with two methods/ways.
- List can be updated by the user.
- Fast, simple and easy.
# In a simple word, it is an "Automatic WP Exploiter".
Disclaimer:
- THIS TOOL WAS WRITTEN FOR EDUCATIONAL PURPOSES. ONLY USE THIS TOOL ON WEBSITES YOU ARE ALLOWED TO TEST
- THE AUTHOR CANNOT AND WILL NOT IN ANY WAY LIABLE FOR ANY LOSS OR DAMAGE ARISING WITH THE USE OF THIS TOOL.
- USE IT UNDER YOUR OWN RISK!
- IF YOU DON'T AGREE WITH WHAT I SAID, PLEASE DON'T USE THIS TOOL.
(This post was last modified: 09-02-2017, 08:50 AM by ZanGetsu.)
![[Image: Vs4P58c.png]](https://i.imgur.com/Vs4P58c.png)
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)