scan vuln di CMS WORDPRESS

**ekawithoutyou** · 01-18-2012, 08:21 PM

(01-18-2012, 08:03 PM)c0d3HitLER Wrote: Buat latihan wp-scan :
http://pakarti.web.id/:D

Boleh ni Om Tongue

**c0d3HitLER** · 01-18-2012, 08:32 PM

(01-18-2012, 08:21 PM)ekawithoutyou Wrote:
(01-18-2012, 08:03 PM)c0d3HitLER Wrote: Buat latihan wp-scan :
http://pakarti.web.id/:D
Boleh ni Om

coba aja

yg penting jgn jump
kalo jum berarti gag latihan pake wp-scan

**ekawithoutyou** · 01-18-2012, 08:57 PM

(01-18-2012, 08:32 PM)c0d3HitLER Wrote:
(01-18-2012, 08:21 PM)ekawithoutyou Wrote:
(01-18-2012, 08:03 PM)c0d3HitLER Wrote: Buat latihan wp-scan :
http://pakarti.web.id/:D
Boleh ni Om

coba aja
yg penting jgn jump
kalo jum berarti gag latihan pake wp-scan

Ok OM

**c0d3HitLER** · 01-18-2012, 09:26 PM

(01-18-2012, 08:57 PM)ekawithoutyou Wrote:
(01-18-2012, 08:32 PM)c0d3HitLER Wrote:
(01-18-2012, 08:21 PM)ekawithoutyou Wrote:
(01-18-2012, 08:03 PM)c0d3HitLER Wrote: Buat latihan wp-scan :
http://pakarti.web.id/:D
Boleh ni Om

coba aja
yg penting jgn jump
kalo jum berarti gag latihan pake wp-scan

Ok OM

ditunggu hasilnya Big Grin

**lucifer893**$ · 01-27-2012, 03:57 AM

mas bro ane mau tanya nihh... kmren ane nyoba wpscan yg enumerate username n dah nemu username na.. trus pas ane mau bruteforce muncul yag beginian ane dh muter gugel pi lum ketemu jug.. mohon petunjuk...

Quote:ruby ./wpscan.rb --url http://xxxxxxxx.ac.id --wordlist darkc0de.lst --username ariof05

trus ane enter kluar na begini

Quote:____________________________________________________
__ _______ _____
\ \ / / __ \ / ____|
\ \ /\ / /| |__) | (___ ___ __ _ _ __
\ \/ \/ / | ___/ \___ \ / __|/ _` | '_ \
\ /\ / | | ____) | (__| (_| | | | |
\/ \/ |_| |_____/ \___|\__,_|_| |_| v1.1

WordPress Security Scanner by ethicalhack3r.co.uk
Sponsored by the RandomStorm Open Source Initiative
_____________________________________________________

[ERROR] The file "darkc0de.lst" does not exist.

itu knapa yah apkh darkc0de.lst na kudu kita pindhin ke folder wpscan na juga atau ada yg slah langkah sya mohon pencerahan masbor Big Grin

**koecroet** · 01-27-2012, 06:57 AM

(01-27-2012, 03:57 AM)lucifer893 Wrote: mas bro ane mau tanya nihh... kmren ane nyoba wpscan yg enumerate username n dah nemu username na.. trus pas ane mau bruteforce muncul yag beginian ane dh muter gugel pi lum ketemu jug.. mohon petunjuk...

Quote:ruby ./wpscan.rb --url http://xxxxxxxx.ac.id --wordlist darkc0de.lst --username ariof05

trus ane enter kluar na begini

Quote:____________________________________________________
__ _______ _____
\ \ / / __ \ / ____|
\ \ /\ / /| |__) | (___ ___ __ _ _ __
\ \/ \/ / | ___/ \___ \ / __|/ _` | '_ \
\ /\ / | | ____) | (__| (_| | | | |
\/ \/ |_| |_____/ \___|\__,_|_| |_| v1.1

WordPress Security Scanner by ethicalhack3r.co.uk
Sponsored by the RandomStorm Open Source Initiative
_____________________________________________________

[ERROR] The file "darkc0de.lst" does not exist.

itu knapa yah apkh darkc0de.lst na kudu kita pindhin ke folder wpscan na juga atau ada yg slah langkah sya mohon pencerahan masbor

hehe itu tulisannya "does not exist."
brarti file nya gk ada, setau ane darc0de.lst itu terletak di direktori"/pentest/password/wordlist/".
jadi command nya kurang lebih kaya gini:

Code:
ruby ./wpscan.rb --url http://xxxxxxxx.ac.id --wordlist /pentest/password/wordlist/darkc0de.lst --username ariof05

**lucifer893**$ · 01-27-2012, 05:11 PM

(01-27-2012, 06:57 AM)koecroet Wrote:
(01-27-2012, 03:57 AM)lucifer893 Wrote: mas bro ane mau tanya nihh... kmren ane nyoba wpscan yg enumerate username n dah nemu username na.. trus pas ane mau bruteforce muncul yag beginian ane dh muter gugel pi lum ketemu jug.. mohon petunjuk...

Quote:ruby ./wpscan.rb --url http://xxxxxxxx.ac.id --wordlist darkc0de.lst --username ariof05

trus ane enter kluar na begini

Quote:____________________________________________________
__ _______ _____
\ \ / / __ \ / ____|
\ \ /\ / /| |__) | (___ ___ __ _ _ __
\ \/ \/ / | ___/ \___ \ / __|/ _` | '_ \
\ /\ / | | ____) | (__| (_| | | | |
\/ \/ |_| |_____/ \___|\__,_|_| |_| v1.1

WordPress Security Scanner by ethicalhack3r.co.uk
Sponsored by the RandomStorm Open Source Initiative
_____________________________________________________

[ERROR] The file "darkc0de.lst" does not exist.

itu knapa yah apkh darkc0de.lst na kudu kita pindhin ke folder wpscan na juga atau ada yg slah langkah sya mohon pencerahan masbor

hehe itu tulisannya "does not exist."
brarti file nya gk ada, setau ane darc0de.lst itu terletak di direktori"/pentest/password/wordlist/".
jadi command nya kurang lebih kaya gini:

Code:
ruby ./wpscan.rb --url http://xxxxxxxx.ac.id --wordlist /pentest/password/wordlist/darkc0de.lst --username ariof05

ohh begituh toh masuk ke direktor na atu2 kirain langsung gitu aja, maklum newbii mas bro hehe.. tq pencrhan na .. ane coba dlu

**Marwanz** · 01-31-2012, 09:06 PM

om, kok di bt ane gak ada wp scan ya

root@try4error:~# cd /pentest/web/wpscan
bash: cd: /pentest/web/wpscan: No such file or directory
root@try4error:~#

caranya biar ada gimana ya om ?

**c0d3HitLER** · 01-31-2012, 09:28 PM

(01-31-2012, 09:06 PM)Marwanz Wrote: om, kok di bt ane gak ada wp scan ya

root@try4error:~# cd /pentest/web/wpscan
bash: cd: /pentest/web/wpscan: No such file or directory
root@try4error:~#

caranya biar ada gimana ya om ?

ya download

**Marwanz** · 01-31-2012, 10:04 PM

(01-31-2012, 09:28 PM)c0d3HitLER Wrote:
(01-31-2012, 09:06 PM)Marwanz Wrote: om, kok di bt ane gak ada wp scan ya

root@try4error:~# cd /pentest/web/wpscan
bash: cd: /pentest/web/wpscan: No such file or directory
root@try4error:~#

caranya biar ada gimana ya om ?

ya download

ane jg udah download,bang, kaya di post #1

tapi ga bisa juga masih anehh Sad