A collection of useful resources for hacking WordPress and it's plugins and themes
☆83Mar 9, 2026Updated 2 months ago
Alternatives and similar repositories for wordpress-hacking
Users that are interested in wordpress-hacking are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds☆23May 15, 2024Updated 2 years ago
- Slurps down the most popular plugins and themes from WordPress.org☆17Feb 14, 2026Updated 3 months ago
- Get and extract the frontend code of a SPA, finding all chunks and recreating the original code from source maps. Should support common w…☆51Jul 23, 2025Updated 10 months ago
- PHP RCE PoC for CVE-2024-4577 written in bash, go, python and a nuclei template☆31Dec 7, 2025Updated 5 months ago
- A proof-of-concept WordPress plugin fuzzer☆198Aug 31, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- CipherRun is an ethical hacking tool used to execute shellcode easily while bypassing antivirus solutions.☆11Jan 30, 2024Updated 2 years ago
- This repository contains a Python script to automate the process of testing for a vulnerability known as Text4Shell, referenced under the…☆13Jun 27, 2023Updated 2 years ago
- Linux network and security sandbox with support for kernel exploit protection as well as VPN and proxy chaining☆16Mar 30, 2025Updated last year
- Various AD tools needed for penetration testing in one place.☆24Jul 13, 2023Updated 2 years ago
- GitHub Action to perform various checks for WordPress sites (syntax, virus, known vulnerabilities)☆25Mar 10, 2026Updated 2 months ago
- A hybrid analysis framework to aid in uncovering deserialization vulnerabilities☆15Oct 13, 2024Updated last year
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆31Sep 23, 2025Updated 8 months ago
- Unicode characters that will translate a single character to multiple characters in domain names or TLD's☆51Nov 23, 2024Updated last year
- SIP protocol command line sniffer☆13Apr 16, 2020Updated 6 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Reflective shellcode runners using obfuscated Win32 APIs in C# and C++ (GetProcAddress & GetModuleHandle). For penetration testing.☆16Jul 17, 2025Updated 10 months ago
- ☆11Apr 8, 2024Updated 2 years ago
- A modern SEO plugin for managing meta tags, breadcrumbs, and sitemaps.☆32Feb 22, 2025Updated last year
- Temodar Agent is an AI-powered WordPress plugin and theme security analysis platform built for security researchers, product security tea…☆57Updated this week
- Demo of various ways to exploit post based reflected XSS☆18Jul 6, 2023Updated 2 years ago
- BETA: This plugin provides a command-line interface for scrubbing sensitive user and comment data from a WordPress installation.☆27Feb 27, 2025Updated last year
- GiveWP PHP Object Injection exploit☆12Oct 1, 2024Updated last year
- PrettyRecon-cli is an unofficial cli client for PrettyRecon. This tool can be used to trigger various tasks on prettyrecon as well as fe…☆10May 9, 2025Updated last year
- This repository contains a Proof of Concept (PoC) exploit for CVE-2024-11680, a critical vulnerability in ProjectSend r1605 and older ver…☆12Jan 31, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- qFlipper — desktop application for updating Flipper Zero firmware via PC☆17Mar 12, 2022Updated 4 years ago
- CVE-2024-44000 is a vulnerability in the LiteSpeed Cache plugin, a popular WordPress plugin. This vulnerability affects session managemen…☆16Sep 6, 2024Updated last year
- PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal☆18May 7, 2024Updated 2 years ago
- Browse the web entirely over SMS — no apps required.☆13Oct 6, 2014Updated 11 years ago
- Standardised setup for researching WordPress plugin- and theme vulnerabilities.☆31Mar 17, 2026Updated 2 months ago
- This repository contains information on the CVEs I found.☆53Mar 10, 2024Updated 2 years ago
- Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)☆50Oct 2, 2024Updated last year
- ReconX is a powerful automated reconnaissance and vulnerability scanning tool designed for ethical hackers, penetration testers, and secu…☆16Feb 27, 2025Updated last year
- A simple WordPress plugin to make the widget areas on the right side at /wp-admin/widgets.php sticky.☆21Dec 11, 2017Updated 8 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- This repo stores something about reverse engineering technique fundemental☆16Jan 16, 2023Updated 3 years ago
- ☆12Oct 10, 2024Updated last year
- Tool to parse subdomains from dmarc.live☆152Apr 19, 2024Updated 2 years ago
- ☆17Oct 15, 2024Updated last year
- Fully automated & requests based TikTok account generator using TikTok's private mobile API.☆18Jun 28, 2024Updated last year
- Full disk encryption for Kali on Raspberry using LUKS☆15Dec 13, 2020Updated 5 years ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆301May 11, 2026Updated 2 weeks ago