Wordpress
Important Wordpress Files
index.php
license.txt : contains information about the installed Wordpress version
wp-activate.php : used for email activation when setting up a new Wordpress site
Login folders:
/wp-admin/login.php/wp-admin/wp-login.php/login.php/wp-login.php
xmlrpc.php : this is a file the represents a feature of WordPress that enables data to be transmitted with HTTP acting as the transport mechanism and XML as the encoding mechanism. This type of communication has been replaced by the WordPress REST API.
/wp-content/ : main directory where plugins and themes are stored
/wp-content/uploads : the directory where any files uploaded to the platform are stored
/wp-includes/ : This is the directory where core files are stored, such as certificates, fonts, JavaScript files, and widgets
wp-sitemap.xml : In WordPress version 5.5 and greater, Wordpress generates a sitemap XML file with all public posts and publicy queryable post types.
Important Post-Exploitation Files
wp-config.php : this file contain information required by WordPress to connect to the database such as the database name, database host, username and password, authentication keys and salts, and the database table prefix.
Automated Enumerating with WPScan
WPScan is a WordPress vulnerability scanner that attempts to determind the WordPress versions, themes, and plugins as well as identifying known vulnerabilities for these versions. WPScan looks up component vulnerabilities in the WordPress Vulnerability Database which requires an API token. A limited API key can be obtained for free by registering an account on the WPScan homepage. However, even without providing an API key, WPScan can enumerate WordPress instances.
Last updated