PRINT
PRINT
SEND MAIL
SEND MAIL

An XMLRPC brute forcer targeting Wordpress written in Python 3. In the context of xmlrpc brute forcing, its faster than Hydra and WpScan. It can brute force 1000 passwords per second.

Usage
python3 xmlrcpbruteforce.py http://wordpress.org/xmlrpc.php passwords.txt username
python3 xmlrpcbruteforce.py http://wordpress.org/xmlrpc.php passwords.txt userlist.txt

Bugs
If you get an xml.etree.ElementTree.ParseError:
  • Did you forget to add 'xmlrpc' in the url ?
  • Try to add or remove 'https' or 'www'.
I'm working on the Exception Handling. Will fix it soon.

Screenshot



©2021 By Cyber Sec Labs

   

CONTACT US

We're not around right now. But you can send us an email and we'll get back to you, asap.

Sending

Log in with your credentials

or    

Forgot your details?

Create Account