WPSploit Logo

WPSploit

0
Free
Visit Website

WPSploit is a repository designed for creating and/or porting specific exploits for WordPress using Metasploit as an exploitation tool. It currently contains 45 modules (15 exploits and 30 auxiliaries). For usage, download the modules to a directory, and refer to the official documentation of Metasploit for loading external modules. All modules are based on the WPScan Vulnerability Database (WPVDB). For contributions, fork the repository, create a new feature branch, commit changes, and create a new pull request. Questions and suggestions can be sent to robertoespreto[at]gmail.com.

FEATURES

ALTERNATIVES

A post-exploitation framework for attacking running AWS infrastructure

A structured approach for conducting penetration tests with seven main sections covering all aspects of the test.

A subdomain enumeration tool for bug hunting and pentesting

TikiTorch offers advanced process injection capabilities to execute code stealthily in another process's space.

A list of useful payloads and bypasses for Web Application Security.

Setup script for Regon-ng

Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.

PwnAuth is an open-source tool for generating and managing authentication tokens for penetration testing and red teaming exercises.

PINNED