Member-only story
How I find valuable exploit in local bank website
I was just sitting in my room and try to find some valuable data on internet. I decided to exploit local bank website the consequences was so terrible. Open my Linux laptop install exploiting local bank website.
I was using WPScan WordPress scanning tool . that help me to identify common one abilities that can be exploit. First of all I start scanning website with without key and the result was not so good even I found some normal level accessories but it was blocking by bank firewall system.
Command i use :
This Command help me a lot of time to scan WordPress website since i start using WordPress scanner i have some others scripts i will share on my Medium profile .
wpscan --url https://www.XX.com --api-token xxxxxxxxxxxxxxxxxx --ignore-main-redirect -e , u So try to scan the website with force it’s still didn’t show me anything value. Then I use my API key that help me to exploit website more deeper.
[+] XML-RPC seems to be enabled…
