Hello There, Guest! Login Register
Logo
Dismiss this notice
MaDLeeTs is not responsible for any attacks that are carried out on networks, websites or servers.
MaDLeeTs staff members cannot be held responsible.
All information on this forum is for educational purposes only.


WP-Attacker v4

  • 0 Vote(s) - 0 Average


10-25-2014, 08:23 AM #1
Hannibal Ksa Offline TeaM MaDLeeTs ***
TeaM MaDLeeTs
Posts:15 Threads:10 Joined:May 2014 Reputation: 6
Mood: Stoned
Salam brothers !

Today we've a project that I've finished it 3 months ago :angel:

which help you to do a pentest on WordPress wink

WP-ATTACKER v.4

What's new ?

  1. Grab all wordpress websites on the server via Bing API
  2. Scan all the possible plugins/themes on each website from a list (provided by the user)
  3. Brute Force using the correct username and a passwords list via xmlrpc.php *NEW*
  4. Brute Force using the correct username and a passwords list via wp-login.php *MODIFIED*
  5. Scan all the possible plugins/themes on each website from security databases *MODIFIED*
  6. Change the appearance of the tool

Plugins/themes List format:
Code:
XP:wp-content/plugins/XP/lib/exploit.php:Group-XP

XP = plugin/theme 's name

wp-content/plugins/XP/lib/exploit.php = plugin/theme 's path

Group-XP = Keyword (clue to double check if its there!)

NOTE: Keyword value is optional in this version Cool

the Tool uses two methods to check plugins and/or themes, which are:
  • Keyword.
  • Headers Respond.

Passwords list:

Code:
123456
password
admin
whateva


--------------

What's new ?

Brute Force using two methods:
  1. The usual way : wp-login.php
  2. The new way : xmlrpc.php

Checking plugins and/or themes using two methods:

  1. Keyword (provided by the user).
  2. Headers.

Any list could be used with a simple modification as an example:
HERE !



Pictures for Brute Forcing (Success!):
  • XMLRPC
[Image: 161au8l.jpg]
  • WP-LOGIN

[Image: e5qn1i.jpg]


:idea: The project has been build on the user(s)




Disclaimer:
  • THIS TOOL WAS WRITTEN FOR EDUCATIONAL PURPOSES. ONLY USE THIS TOOL ON WEBSITES YOU ARE ALLOWED TO TEST
  • THE AUTHOR CANNOT AND WILL NOT IN ANY WAY LIABLE FOR ANY LOSS OR DAMAGE ARISING WITH THE USE OF THIS TOOL.
  • USE IT UNDER YOUR OWN RISK!
  • IF YOU DON'T AGREE WITH WHAT I SAID, PLEASE DON'T USE THIS TOOL.


Before downloading you must have a BING API Hash : HERE


Download from here: WP-ATTCKER ,,


Any problem you could use this thread or GitHub Biggrinsmiley


Cheers!


uNdErGrOuNd
hk @ r00t3rz

10-25-2014, 10:17 AM #2
Erenox Offline Junior Coder **
Registered
Posts:15 Threads:1 Joined:Aug 2014 Reputation: 3
Mood: Mad
it work fine Smiley1
great job Cool

[Image: pgZE3bEsrQ1f.png]

10-25-2014, 02:21 PM #3
RieqyNS13 Offline Junior Member **
Registered
Posts:2 Threads:0 Joined:Jul 2014 Reputation: 0
Mood: None
but in latest version of wordpress, If you login incorrectly for 3 times, you must wait few minutes to be able to login again

10-25-2014, 05:05 PM #4
Doc-D Offline TeaM MaDLeeTs ***
TeaM MaDLeeTs
Posts:13 Threads:1 Joined:Oct 2014 Reputation: 1
Mood: Devilish
Nice Work Man - Working

You want a dot operator in PHP ?
PHP Code:
eval(str_replace('.''->'$code_with_dot_operator))[/color

10-25-2014, 05:27 PM #5
D30N3 Offline TeaM MaDLeeTs ***
TeaM MaDLeeTs
Posts:31 Threads:0 Joined:Oct 2014 Reputation: 3
Mood: Thinking
Thanks for sharing.

B 1 with Every 1

10-25-2014, 09:09 PM #6
T3N38R15 Offline ? lawless-coder *****
Moderators
Posts:812 Threads:48 Joined:Jan 2014 Reputation: 126
Mood: Fine
great programming Hannibal Ksa Smiley1

[Image: xodhvlpa.jpg]
[Image: test.php]

10-25-2014, 09:41 PM #7
Not1fy Offline Junior Member **
Registered
Posts:4 Threads:0 Joined:Oct 2014 Reputation: 0
Mood: None
Nice tool

Thanks

Security is just an Illusion [Image: terminal.gif]





10-25-2014, 11:48 PM #8
KaMi HaXor Offline Any Help ContaCt *****
Respected
Posts:508 Threads:264 Joined:Feb 2013 Reputation: 23
Mood: Zombie
Nice programming keep it up Smiley1

[Image: un7oYOs.png]
[Image: FL8ZXnw.gif]

04-02-2017, 08:29 AM #9
0xdeadnoob Offline Junior Member **
Registered
Posts:4 Threads:0 Joined:Apr 2017 Reputation: 0
Mood: None
nice code..
i have an suggestion to you. maybe you can put those curl and write file into functions to minimize the filesize and more readable.

one more thing, on line 679 you can use if($z != ""){ rather than if(!$z == ""){

just my 2c.

btw, i have same project like you. if you want we can merge the idea. Smiley1






Forum Jump:


Users browsing this thread:1 Guest(s)