whx
/
killchain-compendium
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
killchain-compendium/Enumeration/wpscan.md

501 B
Raw Blame History

WPScan

Themes

wpscan --url <URL> --enumerate t
  • ls for content

Plugins

wpscan --url <URL> --enumerate p

Users

wpscan --url <URL> --enumerate u

Vulnerabilities

  • WPVulnDB API is needed
  • Plugins
wpscan --url <URL> --enumerate vp

Password attack

wpscan --url <URL> --passwords <wordlist> --usernames <usersFromEnumeration>

WAF Aggressiveness

wpscan --url <URL> --enumerate p --plugins-detection <aggressive/passive>