-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathWPFinder.py
42 lines (34 loc) · 1.45 KB
/
WPFinder.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
from service.finders import finders
from service.xmlrpc import xmlrpc
import optparse
class WPFinder:
Message = """
__ ______ _____ _ _
\ \ / / _ \| ___(_)_ __ __| | ___ _ __
\ \ /\ / /| |_) | |_ | | '_ \ / _` |/ _ \ '__|
\ V V / | __/| _| | | | | | (_| | __/ |
\_/\_/ |_| |_| |_|_| |_|\__,_|\___|_|
Created by - Invelsec
\ github.com/invelsec
"""
Info = """
This tool extracting 'Admin' usernames and Checking XMLRPC Features on wordpress based sites.
Please don't use this tool for illegal activities.
"""
def __init__(self) -> None:
opt = optparse.OptionParser(description=self.Info)
opt.add_option("-u",dest="url",help="Wordpress Site Url.")
opt.add_option("-x",dest="xmlrpc",help="Testing XMLRPC PingBack.")
(optInput,_)= opt.parse_args()
print(self.Message + "\n" + self.Info)
if optInput.url != None:
finders().searchAdminUser(optInput.url)
print("Admin Enumeration Finished. Now Checking XMLRPC!\n")
xmlrpc().createAndSendRequest(optInput.url)
if optInput.xmlrpc != None:
print("\nXmlRpc Pingback Testing!")
xmlrpc().testXMLRPCPingback(optInput.url,optInput.xmlrpc)
else:
print("Please give any wordpress site url!")
exit
WPFinder()