Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- G2 S13
- ======
- Content Management System
- -------------------------
- For creating a whole new website, you just need to drag and drop the site's element only. You do not need to have very awesome knowledge of HTML, JS, PHP and all.... So you are just required to have a good knowledge of english and grammer.
- WordPress also provides the CMS
- -------------------------------
- How to recognise the site is in wordpress
- 1. Wappalyser
- 2. add wp-admin or wp-login in the end of thr url
- 3. we will see "wp-content", when we look up for the image location
- https://lh3.googleusercontent.com/F7mmPG4ZnEee3SIwxSPXH8vdLZ3jdyShtFvyH7rDhbbejFX1GCiWjbqwisDc59iWVScWVjdKJt0XjGWN20eR8ZpNtnYb_HU=w614-h408
- https://www.mercedes-benz.com/wp-content/uploads/sites/3/2017/09/03-mercedes-benz-vehicles-mercedes-amg-project-one-hypercar-iaa-2017-2560x1440-1280x720.jpg
- https://lh3.googleusercontent.com/YkbeAuJ5-MVlEcPN-TvochVgpX66RjUiMVx1xxN84jbCi8u1Ja_WfpMK5eAmenK0_ImPpOruLupMjDENZHYtABDyaN4gDLs=w614-h257
- https://tctechcrunch2011.files.wordpress.com/2017/11/dscf3306.jpg?w=738
- https://media.newyorker.com/photos/5a189694ac3ab35aa8cf2f1c/4:3/w_580,c_limit/AP_17320629923438.jpg
- Download Wordpress ---> www.wordpress.org ---> 4.8
- http://127.0.0.1/wordpress/wp-content/uploads/2017/11/bharti-210x300.jpg
- Hacking into wordpress website
- ------------------------------
- wpscan --> Inbuild tool for kali linux. Used for enumerating and scanning the Wordpress Website.
- #wpscan
- #wpscan --url 172.16.79.141/wordpress
- #wpscan --url 172.16.79.141/wordpress --enumerate t --> to enumerate the data about theme
- #wpscan --url 172.16.79.141/wordpress --enumerate p --> to enumerate the data about plugins
- #wpscan --url 172.16.79.141/wordpress --enumerate u --> to enumerate the data about username
- wpscan --url 172.16.79.141/wordpress --wordlist /usr/share/wordlists/rockyou.txt --username anjalisharma ----> for bruteforcing the password
- wp-login changer ----> wp-admin ---->
- www.xyz.com/wp-admin ---> login page
- www.xyz.com/helloDudes.php
- Login Limiter
- -----------------------------------------------------------------------------------------------------------------------------
- The OpenVAS (Open Vulnerability Assessment System) scanner is a comprehensive vulnerability assessment system that can detect security issues in all manner of servers and network devices. OpenVAS is updated through the Network Vulnerability Tests (NVTs) feed. It is pre-installed in Kali 2.0 (2016) version. It uses Greenbone Security Assessment as the Control Authority of it. It is also listed in the best Network Scanning Report Generation tools.
- Scan Types :
- = Full Scan for a full test of network, server and web application vulnerabilities.
- = Web Server Scan a more focused test for web server and web application vulnerabilities.
- = WordPress Scan testing for known WordPress vulnerabilities and web server issues.
- = Joomla Scan testing for known Joomla vulnerabilities and web server issues.
- Running OpenVAS
- ===============
- Requirements : Kali 2.0 (2016.1) , Iceweasel Browser, OpenVAS
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement