Multi-threaded XMLRPC brute forcer using amplification attacks targeting WordPress installations prior to version 4.4.
☆145May 3, 2024Updated 2 years ago
Alternatives and similar repositories for xmlrpc-bruteforcer
Users that are interested in xmlrpc-bruteforcer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield☆496Aug 10, 2025Updated 8 months ago
- Perform various SMB-related attacks, particularly useful for testing large Active Directory environments.☆42Oct 15, 2022Updated 3 years ago
- A PowerShell script that simplifies life and therefore... phishing.☆19Aug 16, 2022Updated 3 years ago
- Burp Suite plugin that dynamically generates Google 2FA codes for use in session handling rules (approved by PortSwigger for inclusion in…☆29Sep 4, 2025Updated 8 months ago
- S3 Buckets that will let you list all files inside them☆14Apr 26, 2018Updated 8 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- All-in-One WP Migration-Backup-Finder☆15Nov 5, 2025Updated 6 months ago
- Boxer: A fast directory bruteforce tool written in Python with concurrency.☆14Feb 26, 2021Updated 5 years ago
- ☆12Apr 21, 2020Updated 6 years ago
- Bruteforce over SMB using pure Python☆20Jan 6, 2022Updated 4 years ago
- Proof of concept : CVE-2024-1071: WordPress Vulnerability Exploited☆22Aug 30, 2024Updated last year
- Exploit for CVE-2022-27226☆15Mar 19, 2022Updated 4 years ago
- POC for CVE-2020-9484☆13Feb 10, 2021Updated 5 years ago
- Shellcode Loader | xss.is☆13Jul 26, 2024Updated last year
- Installs and adjusts Pentest tools.☆10Oct 19, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- From Wordpress admin to pty automatically!☆15Mar 10, 2024Updated 2 years ago
- AWS S3 Bucket Finder.☆14Oct 28, 2025Updated 6 months ago
- Python script to scan for weak CBC ciphers, weak MAC algorithms and support auth methods.☆17Apr 13, 2016Updated 10 years ago
- An Android RAT that collects various sensitive information in real-time and send them to the attacker databse.☆45Nov 22, 2019Updated 6 years ago
- z/OS Mainframe TPX panel account enumerator and brute forcer☆20Jan 10, 2018Updated 8 years ago
- CVE-2023-1671-POC, based on dnslog platform☆17Apr 26, 2023Updated 3 years ago
- CMS Scanner: Scan Wordpress, Drupal, Joomla, vBulletin websites for Security issues☆1,064May 18, 2021Updated 4 years ago
- A CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.☆331May 3, 2024Updated 2 years ago
- ☆11Jun 22, 2020Updated 5 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- An exploit for CVE-2018-5955 GitStack 2.3.10 Unauthenticated RCE☆10Nov 15, 2024Updated last year
- POC Pdf-exploit builder on C#☆13Mar 1, 2024Updated 2 years ago
- generates weak passwords based on current date☆44Jun 27, 2024Updated last year
- Lord of SQL Injection (주석은 한글로 작성되어 있습니다. / Comments were written in Korean!)☆14Aug 22, 2017Updated 8 years ago
- Simple tools to handle string and generate subdomain permutations☆15Jun 8, 2022Updated 3 years ago
- XXE attack tool☆31Feb 20, 2016Updated 10 years ago
- Wordpress Attack Suite☆976Feb 16, 2021Updated 5 years ago
- A PoC .net shell which uses a GitHub.com repository for the communication channel.☆11Oct 25, 2018Updated 7 years ago
- Bruteforce DPAPI encrypted MasterKey File from Windows Credentials Manager☆23Jan 4, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Asynchronous public DNS auditing tool☆11May 22, 2023Updated 2 years ago
- Cobalt Strike BOFS☆16Dec 20, 2023Updated 2 years ago
- Miscellaneous for various things☆21Nov 19, 2024Updated last year
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆143Jan 21, 2025Updated last year
- Anything related to Ghidra☆12Apr 22, 2019Updated 7 years ago
- Another Remote Access Control software, written in Golang. It heavily relies on cryptography to avoid threat of botnet use/abuse by other…☆11Jan 12, 2017Updated 9 years ago
- Bash Enumeration Script☆18Oct 18, 2019Updated 6 years ago