Jump to content

Wordpress Pentest

babadoctor
By babadoctor
in Networking
 Share
Go to solution Solved by Blake,

I want to test a friends word press website for vulnerabilities, so i was wondering what tools you guys know of in kali that would help me do this?

 

Or any tools in general that test word press websites for vulnerabilities

https://blog.ctf365.com/infographic-your-pentest-tools-arsenal/

 

This will give you a few applications to start with. Yes you want to use Kali, but it isn't required.

Posted

I want to test a friends word press website for vulnerabilities, so i was wondering what tools you guys know of in kali that would help me do this?

 

Or any tools in general that test word press websites for vulnerabilities

 

 

OFF TOPIC: I suggest every poll from now on to have "**CK EA" option instead of "Other"

Link to comment
https://linustechtips.com/topic/502183-wordpress-pentest/
Share on other sites
Link to post
Share on other sites
Posted

I want to test a friends word press website for vulnerabilities, so i was wondering what tools you guys know of in kali that would help me do this?

 

Or any tools in general that test word press websites for vulnerabilities

1. get a good internet connection (data center or google fiber) (more upload than the webserver has download)

2. download low orbit ion cannon

3. type in the ip

4. click teh button

5. rip website.

 

edit: did he code his website himself? because if he didn't he could just look up if his version of wordpress has any vulnerabilities :)

Dutch Talk Thread

Unofficial LMG Social Media Accounts Website

Link to comment
https://linustechtips.com/topic/502183-wordpress-pentest/#findComment-6704682
Share on other sites
Link to post
Share on other sites
Posted
  • Author

1. get a good internet connection (data center or google fiber) (more upload than the webserver has download)

2. download low orbit ion cannon

3. type in the ip

4. click teh button

5. rip website.

 

edit: did he code his website himself? because if he didn't he could just look up if his version of wordpress has any vulnerabilities :)

I dont want to ddos his website.

If i wanted to i would launch a dns attack with enough power to equal up to 200GBPS

OFF TOPIC: I suggest every poll from now on to have "**CK EA" option instead of "Other"

Link to comment
https://linustechtips.com/topic/502183-wordpress-pentest/#findComment-6704823
Share on other sites
Link to post
Share on other sites
Posted
  • Author

1. get a good internet connection (data center or google fiber) (more upload than the webserver has download)

2. download low orbit ion cannon

3. type in the ip

4. click teh button

5. rip website.

 

edit: did he code his website himself? because if he didn't he could just look up if his version of wordpress has any vulnerabilities :)

And since you mentioned that

is 500 megs enough?

https://www.youtube.com/watch?v=502OYMyglu0

OFF TOPIC: I suggest every poll from now on to have "**CK EA" option instead of "Other"

Link to comment
https://linustechtips.com/topic/502183-wordpress-pentest/#findComment-6704827
Share on other sites
Link to post
Share on other sites
Posted

And since you mentioned that

is 500 megs enough?

https://www.youtube.com/watch?v=502OYMyglu0

yes haha, most people host on 100/100 xD

btw, if someone comes along with google fiber you're still fucked if they ddos you xD

also: you just made your ip public... LOL

Dutch Talk Thread

Unofficial LMG Social Media Accounts Website

Link to comment
https://linustechtips.com/topic/502183-wordpress-pentest/#findComment-6704852
Share on other sites
Link to post
Share on other sites
Posted
  • Solution

I want to test a friends word press website for vulnerabilities, so i was wondering what tools you guys know of in kali that would help me do this?

 

Or any tools in general that test word press websites for vulnerabilities

https://blog.ctf365.com/infographic-your-pentest-tools-arsenal/

 

This will give you a few applications to start with. Yes you want to use Kali, but it isn't required.

Link to comment
https://linustechtips.com/topic/502183-wordpress-pentest/#findComment-6707229
Share on other sites
Link to post
Share on other sites
Posted

1. get a good internet connection (data center or google fiber) (more upload than the webserver has download)

2. download low orbit ion cannon

3. type in the ip

4. click teh button

5. rip website.

 

edit: did he code his website himself? because if he didn't he could just look up if his version of wordpress has any vulnerabilities :)

Unfortunatley, DOS attacks are not really Pentesting...

Link to comment
https://linustechtips.com/topic/502183-wordpress-pentest/#findComment-6707236
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Networking

×