Multi-threaded XMLRPC brute forcer using amplification attacks targeting WordPress installations prior to version 4.4.
Exploiting the xmlrpc.php on all WordPress versions
WordPress XML-RPC & WP-Login Bruteforce + Auto Uploader Powerful asynchronous bruteforce tool for WordPress sites via wp-login.php and xmlrpc.php, featuring smart password placeholders, username enumeration, and auto-plugin/theme uploader with shell verification. Built for speed, efficiency, and full automation.
Beelzebub all in one tools, Shell finder, Zone-H Grabber, ReverseIP, SMTP Finder, XMLRPC BF and more
Script for bruteforcing multiple Wordpress Users (XMLRPC)
A multi-threaded brute force tool for WordPress websites leveraging the `xmlrpc.php` and WP JSON API to identify valid credentials. This tool supports custom username and password lists, and provides real-time feedback on progress.
WordPress XMLRPC BruteForce Tool. With the use of this tool you will be able, given a username and a password dictionary, to bruteforce any given WordPress website through the use of its XML-RPC API.
Fastest Brute Force Tool
Attempt to Brute-force a WordPress website User Credentials using XMLRPC
Wordpress XMLRPC Brute Force With Variations Password, System Multicall
Add a description, image, and links to the xmlrpc-bruteforcer topic page so that developers can more easily learn about it.
To associate your repository with the xmlrpc-bruteforcer topic, visit your repo's landing page and select "manage topics."