← All tools

xmlrpc-bruteforcer

https://github.com/aress31/xmlrpc-bruteforcer

Open Source

Categories

Web Application

Description

Multi-threaded XMLRPC brute forcer using amplification attacks targeting WordPress installations prior to version 4.4.

Keywords

bruteforce bruteforce-amplification-attack multicall pentesting python wordpress xmlrpc-bruteforcer xmlrpc-interface

Example Usage

cd .\xmlrpc-bruteforcer
docker build -t xmlrpc-bruteforcer .
docker run --rm -v $(pwd):/wordlists xmlrpc-bruteforcer -u admin -w /wordlists/wordlist.txt -t 3 -x https://wordpress.local/xmlrpc.php

See also

JWT_Tool

Open Source

Toolkit for testing, tampering, and forging JSON Web Tokens. Tests common JWT vulnerabilities includ…

Burp Suite

Freemium Kali

Leading platform for web application security testing. The Community Edition includes an interceptin…

UltimateCMSWordlists

Open Source

📚 An ultimate collection wordlists of the best-known CMS…

Penetration_Testing_POC

Open Source

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-ge…

ssrf-exploit

Open Source Kali

an exploit of Server-side request forgery (SSRF)…

cazador_unr

Free

[scanner] [TcpListener] [FileMiner] [Subscrabber]…