CtrlK

Pentest Notes / Exploitation

Application Exploitation

Active directory

Wordpress

wpscan -e p --url https://10.129.12.10 --disable-tls-checks --no-banner --plugins-detection aggressive -t 100
We'll enumerate plugins (-e p), skip TLS checks (--disable-tls-checks), set the plugin detection mode to passive (--plugins-detection passive), and use 100 threads (-t 100) to speed up the enumeration. Alternatively, we could use --plugin-detection aggressive for more intensive plugin detection.

tomcat

etc