Skip to content
/ wp-bruteforcer Public
forked from arall/wp-bruteforcer

WordPress XMLRPC amplification bruteforce tool

0 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tomsnuvv/wp-bruteforcer

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
src/WPBruteforcer
src/WPBruteforcer
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
composer.json
composer.json
 
 
wordlist.txt
wordlist.txt
 
 
wpbruteforcer.php
wpbruteforcer.php
 
 

Repository files navigation

WP Bruteforcer

A simply PHP CLI Tool / Lib to bruteforce WordPress XMLRPC using amplification.

More info: here

Requirements

  • PHP 5.3+
  • Composer
composer install

Usage

php wpbruteforcer.php bruteforce http://wordpress.org/ --wordlist wordlist.txt --username admin

If none username is provided, the tool will enumerate the WordPress users and attack all of them.

php wpbruteforcer.php bruteforce http://wordpress.org/ --wordlist wordlist.txt

You can also just enumerate users with:

php wpbruteforcer.php enumerate http://wordpress.org/ --limit 20

To get a list of options use:

php wpbruteforcer.php -h

About

WordPress XMLRPC amplification bruteforce tool

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • PHP 100.0%