CtrlK
Pentest Notes / Exploitation
Application Exploitation
Active directory
Wordpress
wpscan -e p --url https://10.129.12.10 --disable-tls-checks --no-banner --plugins-detection aggressive -t 100
We'll enumerate plugins (-e p), skip TLS checks (--disable-tls-checks), set the plugin detection mode to passive (--plugins-detection passive), and use 100 threads (-t 100) to speed up the enumeration. Alternatively, we could use --plugin-detection aggressive for more intensive plugin detection.
tomcat
etc