W

wpscan

The WPBruteforcer Python 3 class performs a brute force attack on a WordPress site using a user-provided site URL and a password file. It automatically retrieves users' login names from the site's RESTful API and checks user accounts' vulnerabilities by testing various combinations of identified usernames and passwords. It uses WPScan v3.8.25 under the hood.