A collection of useful resources for hacking WordPress and it's plugins and themes
☆83Mar 9, 2026Updated last month
Alternatives and similar repositories for wordpress-hacking
Users that are interested in wordpress-hacking are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds☆23May 15, 2024Updated last year
- Slurps down the most popular plugins and themes from WordPress.org☆17Feb 14, 2026Updated 2 months ago
- Get and extract the frontend code of a SPA, finding all chunks and recreating the original code from source maps. Should support common w…☆50Jul 23, 2025Updated 8 months ago
- ☆13Nov 25, 2024Updated last year
- PHP RCE PoC for CVE-2024-4577 written in bash, go, python and a nuclei template☆29Dec 7, 2025Updated 4 months ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A proof-of-concept WordPress plugin fuzzer☆198Aug 31, 2024Updated last year
- CipherRun is an ethical hacking tool used to execute shellcode easily while bypassing antivirus solutions.☆11Jan 30, 2024Updated 2 years ago
- a simple powershell wrapper to automate checking a user's access around the network☆13Dec 5, 2023Updated 2 years ago
- Hello Internet; in this playlist, we will together create a car tracking system using PHP & Mysql technology. The idea is to design a ma…☆13May 30, 2023Updated 2 years ago
- This repository contains a Python script to automate the process of testing for a vulnerability known as Text4Shell, referenced under the…☆14Jun 27, 2023Updated 2 years ago
- Various AD tools needed for penetration testing in one place.☆23Jul 13, 2023Updated 2 years ago
- GitHub Action to perform various checks for WordPress sites (syntax, virus, known vulnerabilities)☆25Mar 10, 2026Updated last month
- A hybrid analysis framework to aid in uncovering deserialization vulnerabilities☆15Oct 13, 2024Updated last year
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆31Sep 23, 2025Updated 6 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Unicode characters that will translate a single character to multiple characters in domain names or TLD's☆51Nov 23, 2024Updated last year
- Reflective shellcode runners using obfuscated Win32 APIs in C# and C++ (GetProcAddress & GetModuleHandle). For penetration testing.☆15Jul 17, 2025Updated 8 months ago
- A modern SEO plugin for managing meta tags, breadcrumbs, and sitemaps.☆31Feb 22, 2025Updated last year
- Demo of various ways to exploit post based reflected XSS☆18Jul 6, 2023Updated 2 years ago
- BETA: This plugin provides a command-line interface for scrubbing sensitive user and comment data from a WordPress installation.☆24Feb 27, 2025Updated last year
- PrettyRecon-cli is an unofficial cli client for PrettyRecon. This tool can be used to trigger various tasks on prettyrecon as well as fe…☆10May 9, 2025Updated 11 months ago
- Apophis is a Bash script that leverages tools such as DotNetToJScript, ConfuserEx, Net-Obfuscator etc. to generate 'Shellcode runners'.☆20Mar 12, 2023Updated 3 years ago
- CVE-2024-44000 is a vulnerability in the LiteSpeed Cache plugin, a popular WordPress plugin. This vulnerability affects session managemen…☆15Sep 6, 2024Updated last year
- PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal☆18May 7, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Standardised setup for researching WordPress plugin- and theme vulnerabilities.☆31Mar 17, 2026Updated 3 weeks ago
- This repository contains information on the CVEs I found.☆52Mar 10, 2024Updated 2 years ago
- Collection of walk through, hints, notes, code snippets, tools logs and resources for vulnerable CTF-style boxes☆12Apr 4, 2026Updated last week
- The official repository for the paper "VulScribeR: Exploring RAG-based Vulnerability Augmentation with LLMs".☆24Dec 9, 2025Updated 4 months ago
- ReconX is a powerful automated reconnaissance and vulnerability scanning tool designed for ethical hackers, penetration testers, and secu…☆16Feb 27, 2025Updated last year
- 💫 ANSI colors library for Lua.☆12Dec 5, 2022Updated 3 years ago
- RobinHood - Bug Hunting Recon Automation Script☆37Nov 18, 2022Updated 3 years ago
- A plugin for WordPress.org experimental core features to be developed in.☆21Oct 31, 2024Updated last year
- An OSINT tool for IT ninjas.☆11Jul 31, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Tool to parse subdomains from dmarc.live☆152Apr 19, 2024Updated last year
- ☆17Oct 15, 2024Updated last year
- Fully automated & requests based TikTok account generator using TikTok's private mobile API.☆18Jun 28, 2024Updated last year
- How effective are LLMs in identifying and exploiting security vulnerabilities?☆68Feb 28, 2025Updated last year
- Estimate how long it takes to read a text☆12Sep 6, 2025Updated 7 months ago
- Port Swigger Labs divided on the based of level and topic.☆14Mar 15, 2022Updated 4 years ago
- ☆12Apr 5, 2025Updated last year