-
Notifications
You must be signed in to change notification settings - Fork 0
/
cms.cheat
31 lines (19 loc) · 1.02 KB
/
cms.cheat
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
% cms cheatsheet
# install doopscan
export cwd="$(pwd)";cd /tmp/; git clone https://github.com/droope/droopescan.git;sudo mv droopescan /bin/;cd $cwd
# doopscan scan drupal on target
droopescan scan drupal -u '<url>'
# doopscan scan joomla on target
droopescan scan joomla -u '<url>'
# doopscan scan moodle on target
droopescan scan moodle -u '<url>'
# doopscan scan silverstripe on target
droopescan scan silverstripe -u '<url>'
# doopscan scan wordpress on target
droopescan scan wordpress -u '<url>'
# wordpress enumerate all (remove the tls-checks if http)
wpscan --url '<url>' -e ap,at,tt,cb,dbe,u,m --update --plugins-detection aggressive --plugins-version-detection aggressive --disable-tls-checks | tee -a wp-enum-all.txt
# wordpress scan agressive mode (Default: mixed, is missing allot.)
wpscan --url '<url>' --plugins-detection aggressive | tee -a wp-agressive-plugins.txt
# wordpress enumerate users from host (remove the tls-checks if http)
wpscan --enumerate u --url '<url>' --disable-tls-checks | tee -a wp-enum-users.txt