#!/bin/bash#### Why? Because you've been forgetting to salt and hackers ha

1. #!/bin/bash
2.  
3. ###
4. # Why? Because you've been forgetting to salt and hackers have MD5'd password lists
5. # Reset using salts for a more secure password
6. ###
7.  
8. # Creating new pass, salting it for db
9. ###
10.  newpass=$(tr -cd '[:alnum:][!,@,#,$,%,^,&,*,(,),[,],;,:,.,{,}]' < /dev/urandom | fold -w18 | head -n1)
11.  crypt=$(openssl passwd -1 $newpass)
12. ###
13.  
14. # Get WP db details from config.
15. ###
16.  database=$(grep DB_NAME wp-config.php | awk -F"'" '{print $4}')
17.  user=$(grep DB_USER wp-config.php | awk -F"'" '{print $4}')
18.  pass=$(grep DB_PASS wp-config.php | awk -F"'" '{print $4}')
19.  pre=$(grep table_prefix wp-config.php | awk -F"'" '{print $2}')
20.  prefix=$(echo $pre\users)
21. ###
22.  
23. # Change password, get login username for output from mysql
24. ###
25.  mysql -u $user -p$pass $database -e "UPDATE $prefix SET user_pass='$crypt' WHERE ID=1;"
26.  adminu=$(mysql -u $user -p$pass $database -e "SELECT user_login FROM $prefix WHERE ID=1;")
27.  luser=$(echo $adminu | awk -F" " '{print $2}')
28. ###
29.  
30. # Output, yay!
31. ###
32.  echo -e "\n [*] Wordpress Password Reset:\n\n\tUsername: $luser\n\tPassword: $newpass\n"
33. ###