Common Applications

Joomla

Discovery

curl -s <http://dev.inlanefreight.local/> | grep Joomla

Version Enumeration

curl -s <http://dev.inlanefreight.local/README.txt> | head -n 5

May not be possible on all Joomla versions

curl -s <http://dev.inlanefreight.local/administrator/manifests/files/joomla.xml> | xmllint --format -

sudo pip3 install droop

droopescan scan joomla --url <http://dev.inlanefreight.local/>

Get the tool from here.

$ sudo python2.7 -m pip install urllib3
$ sudo python2.7 -m pip install certifi
$ sudo python2.7 -m pip install bs4

python2.7 joomlascan.py -u <http://dev.inlanefreight.local>

Get the tool from here.

sudo wpscan -e ap -t 500 --url <http://ir.inlanefreight.local>

Users enumeration.

wpscan -e u -t 500 --url <http://ir.inlanefreight.local>

Brute force. Get word list here.

wpscan --url <http://ir.inlanefreight.local> -P darkweb2017-top100.txt -U ilfreightwp

Last updated 6 months ago

Discovery

curl -s <http://dev.inlanefreight.local/> | grep Joomla

Version Enumeration

curl -s <http://dev.inlanefreight.local/README.txt> | head -n 5

May not be possible on all Joomla versions

curl -s <http://dev.inlanefreight.local/administrator/manifests/files/joomla.xml> | xmllint --format -

sudo pip3 install droop

droopescan scan joomla --url <http://dev.inlanefreight.local/>

Get the tool from here.

$ sudo python2.7 -m pip install urllib3
$ sudo python2.7 -m pip install certifi
$ sudo python2.7 -m pip install bs4

python2.7 joomlascan.py -u <http://dev.inlanefreight.local>

Get the tool from here.

sudo wpscan -e ap -t 500 --url <http://ir.inlanefreight.local>

Users enumeration.

wpscan -e u -t 500 --url <http://ir.inlanefreight.local>

Brute force. Get word list here.

wpscan --url <http://ir.inlanefreight.local> -P darkweb2017-top100.txt -U ilfreightwp

Last updated 6 months ago