WordPress Pentesting

Today creating content and feature rich websites is very easy. We don’t need to be a programmer for that, just having basic internet usage experience is enough. Using Content Management Systems (CMS) such as WordPress, Joomla and Drupal, we can easily create websites and showcase our online presence. As they have a huge developer base we can rely on these frameworks for features, but can we for security?

In this guide we will learn how to perform PenTest of Web Applications based on WordPress, the most popular CMS. This guide is more approach centric, so that the methodology can be replicated for other similar platforms.

Download the guide to know morewordpress-6-512

  • Identify CMS and Plugin versions
  • Vulnerability Databases
  • Interesting paths/files
  • XML-RPC
  • Tools