Wpgarlic is a proof-of-concept WordPress plugin fuzzer used in the research described in https://kazet.cc/2022/02/03/fuzzing-wordpress-plugins.html that helped to discover more than 140 vulnerablities…
Presshell is a tool for Quick & dirty Wordpress Command Execution Shell. Execute shell commands on your wordpress server. Uploaded…
WordPress Brute Force is a super fast login for WordPress. .---. .-----------/ \ __ / ------/ / ( )/ -----//////…
Wprecon (Wordpress Recon), is a vulnerability recognition tool in CMS Wordpress, 100% developed in Go. Features StatusFeatures✅Random Agent✅Detection WAF✅User Enumerator✅Plugin…
We intentionally made it for our penetration testing jobs however its getting grey hairs now so we thought we would…
An XMLRPC brute forcer targeting Wordpress written in Python 3. In the context of xmlrpc brute forcing, its faster than…
WPBullet is a static code analysis for WordPress Plugins/Themes (and PHP). Simply clone the repository, install requirements and run the…
WPScan is a free, for non-commercial use, black box WordPress vulnerability scanner written for security professionals and blog maintainers to…
WPintel is a chrome extension designed for WordPress Vulnerability Scanning and information gathering. It allows you to scan self hosted…
CMSeeK is a CMS detection and exploitation suite where you can Scan WordPress, Joomla, Drupal and 100 other CMSs. CMS or…