WP Hunter: Rapid Username and Password Brute Force Detection Tool
Wp hunter is a fastest tool to detect username of an WordPress website and you can also perform password brute forcing in login page with default password file or you can use your own password list.
- Find Wordpress website username.
- Password bruteforcing.
- Default password file.
- Uou can use your own password list.
git clone https://github.com/thenurhabib/wphunter.git
cd wphunter
chmod -R 777 attack.sh
./attack.sh
┌──(habib㉿kali)-[~/Desktop/wp hunter]
└─$ ./attack.sh
__ _______ _ _ _
\ \ / / __ \ | | | | | |
\ \ /\ / /| |__) | | |__| |_ _ _ __ | |_ ___ _ __
\ \/ \/ / | ___/ | __ | | | | '_ \| __/ _ \ '__|
\ /\ / | | | | | | |_| | | | | || __/ |
\/ \/ |_| |_| |_|\__,_|_| |_|\__\___|_|
@thenurhabib
Arguments:
--url wordpress url
--user wordpress username
--wordlist path to password wordlist
User Enumeration:
./attack.sh --url=www.example.com
Password Bruteforce:
./attack.sh --url=www.example.com --user=admin --wordlist=wordlist.txt
Name : Md. Nur habib
Medium : thenurhabib.medium.com
Twitter : https://twitter.com/thenurhab1b
HackerRank : https://www.hackerrank.com/thenurhabib