Tutorials

Bruteforce WordPress with XMLRPC Python Exploit

WordPress did not become the most popular platform on the planet for CMS and blog posting, because it is quite difficult to use. Most likely, its convenient and rich feature set has attracted about 70 million websites and this is only the number of blogs hosted on WordPress.com Today, we are interested in using the […]

Tutorials

Limit WordPress Comments Length [Manually]

One of the best ways to interact with your visitors is to allow them to leave comments on your site, and because WordPress was developed as blogging software, it has an extensive comments system. In this article, we’ll show you how you can limit the wordpress comments length so that no one can actually spam […]

Tutorials

Change default display name in WordPress

WordPress is one of the most popular CMS (Content Management System) used by so many big companies and professionals but sometimes with default settings, the site is open for hackers through which the number of attacking chances are more if you use default configuration. Also Read: Change Default WordPress Table Prefix Name (Before and After […]

Tutorials

Change WordPress Table Prefix [Before/After Installation]

We all knows that WordPress CMS is one of the favourite CMS for hackers. Hence it’s very important to change the default configuration such as Table Prefix name which is (wp_) as by default to something else which is very hard to judge, because the spammers/hackers knows about the default prefix table name which leads […]

Tutorials

Disable XML-RPC in WordPress with 3 different ways

XML-RPC is a remote procedure call which uses XML to to encode its calls and HTTP as a transport mechanism. XML-RPC can be called as a system which enable user to publish post from remote weblog client. XML-RPC service is already enabled by default in all WP versions 3.5 or higher which helps you to […]

Tutorials

Change WordPress Salt Keys Automatically with Salt Shaker

These days, everyone has a good reason to have a website. It’s not just large companies anymore. Individuals, families, and small or independent businesses all need to have one. Some individuals and small businesses don’t have the financial resources to hire a website development company or a freelance web developer to create a website for them. This is where […]

Tutorials

Protect WordPress Admin Directory – HTTP Authentication

Hacking the WordPress Core can make it very difficult to upgrade to the latest version of WordPress. Keeping WordPress current is an important step in overall web site security. If any security vulnerability is discovered a patch is typically released very quickly. Suppose you’ve made the decision to start a photography blog, and you’ve decided that […]

Tutorials

Live Detection and Exploitation of WordPress xmlrpc.php File

Being as popular cms, it is no surprise that WordPress is often always under attack. Some 70% of Techno’s top 100 blogs are using WordPress as a Content Management System. XML-RPC on WordPress is actually an API (Application program interface), remote procedure call which gives developers who make mobile apps, desktop apps and other services […]

Tech News

Dangerous Keylogger Found – Infecting over 2000 WordPress sites

WordPress is one of the most popular open source blogging platform, with global and vibrant user, developer, and support communities. Though it can be compared to TypePad, Moveable Type, Google’s Blogger(Blogspot), and the Apache Roller project as a user-generated content workhorse, WordPress distinguishes itself with a broad array of hosting options, functional extensions (plugins), and […]

Tutorials

Maintaining Access with Web Backdoors [Weevely]

Once a web server and its services have been compromised, it is important to ensure that secure access can be maintained. This is usually accomplished with the aid of a web shell—a small program that provides stealth backdoor access and allows the use of system commands to facilitate post-exploitation activities. Kali comes with several web shells; here […]

Tutorials

WordPress Security Scanner – WPSeku 2017

WordPress is one of the most popular open source CMS now a days having more than 60 million users. Recently they released a new version of wordpress i.e. v4.8 in WordCamp Europe 2017 event. You can easily create the beautiful websites with the help of WordPress. WordPress security is a topic of huge importance for […]