Wordpress

wpscan --url http://172.17.0.2/ --detection-mode mixed --max-threads 50 --plugins-detection mixed

Enumerate Users .. code-block:

wpscan --url http://172.17.0.2/ --enumerate u

Brute force wpscan but highly chance to get ban in less than 3 minutes .. code-block:

wpscan --url http://172.17.0.2/ -P /path/to/wordlisttxt -U <user to bruteforce> --max-threads 50