This Scripting for google anayltics

How to Hack a Wordpress Website with WpScan


WPScan is a black box vulnerability scanner for WordPress websites which is used to find out all possible WordPress vulnerabilities like vulnerable plugins, vulnerable themes and other existing WordPress vulnerabilities. Today we will learn how to install WPscan tool on Kali Linux.

Using of WPScan tool without Penetration testing authorization from clients is illegal. TechTrick is not responsible for any damages. Please read disclaimer.


Lets Start with Hack a Wordpress Website with WpScan


Step 1. Now we are ready to install WPScan tool on Kali Linux, we will install it from Github by running below command in terminal

git clone https://github.com/wpscanteam/wpscan.git

The Best DoS Attack Toolkit - ZAmbIE | Kali Linux


Step 2. Once the download is completed, let change our directory to WPscan directory, which we can do by below command

Its time it install using the following command

./wpscan.rb

The Best DoS Attack Toolkit - ZAmbIE | Kali Linux


Step 3. After updating the vulnerability database use the following command to scan the target website for the most popular and recent vulnerabilities:

./wpscan.rb -u www.YourTargetDomain.com

The Best DoS Attack Toolkit - ZAmbIE | Kali Linux


Step 4. The result should be something like this


The Best DoS Attack Toolkit - ZAmbIE | Kali Linux


Step 5. The WordPress user enumeration tool is used the retrieve a list of registered WordPress users for the target host. User enumeration is the first step when an attacker wants to gain access to a specific target by brute forcing. The enumeration tool scans the target on posts, pages.

./wpscan.rb -u www.YourTargetDomain.com --enumerate p

The Best DoS Attack Toolkit - ZAmbIE | Kali Linux


Step 6. To check the theme vulnerabilities

./wpscan.rb -u www.YourTargetDomain.com --enumerate vt

The Best DoS Attack Toolkit - ZAmbIE | Kali Linux


Step 7. To check the plugin vulnerabilities

./wpscan.rb -u www.YourTargetDomain.com --enumerate vp

The Best DoS Attack Toolkit - ZAmbIE | Kali Linux


For References :-




I hope you enjoyed this article.


Who Should Read TechTrick?

All the tricks and tips that TechTrick provides only for educational purpose. If you choose to use the information in TechTrick to break into computer systems maliciously and without authorization, you are on your own. Neither I (TechTrick Admin) nor anyone else associated with TechTrick shall be liable. We are not responsibe for any issues that caused due to informations provided here. So, Try yourself and see the results. You are not losing anything by trying... We are humans, Mistakes are quite natural. Here on TechTrick also have many mistakes..