This is a python script that performs brute forcing against WordPress installs using a wordlist.
WordPress Brute Force by Claudio Viviani
Inspired by xSecurity's WordPress Brute Muliththreading
Tested on Wordpress 3.x and 4.x
This tool is intended for educational purposes only and the author can not be held liable for any kind of damages done whatsoever to your machine, or damages caused by some other,creative application of this exploit. In any case you disagree with the above statement,stop here.
1) python's httplib2 lib
Installation: pip install httplib2
2) xml-rpc brute force mode
3) http and https protocols support
4) Random User Agent
import urllib, httplib, httplib2
import socket, sys, os, os.path, argparse, random
from threading import Thread
from time import sleep
banner = """
___ ___ __
| Y .-----.----.--| .-----.----.-----.-----.-----.