Hello there everyone
I am stuck at the second question in this section “Perform a login bruteforcing attack against the discovered user. Submit the user’s password as the answer” and becuase of some reason I can’t find the password of the user.
I tried to follow the instruction of the section and acted as the following: "
- sudo wpscan --password-attack xmlrpc-multicall -t 20 -U doug -P /usr/share/wordlists/rockyou.txt.gz --url http://blog.inlanefreight.local"
- Tried to change the the password attack modes
- Added to the url the “wp-login.php”
But no success so for.
Summary
This text will be hidden
I would appricate your help or a hint
Thanks in advance smile: