1
00:00:00,630 --> 00:00:06,660
There is no question that we have some basic renumeration about this fortress now we are going to boufal

2
00:00:06,660 --> 00:00:14,910
this login page, so I will open the Incognito and I will go to the admin since we have on this admin

3
00:00:14,910 --> 00:00:15,310
panel.

4
00:00:17,070 --> 00:00:24,990
So let's assume that we have the user, because in the previous year we have found the users from this

5
00:00:25,010 --> 00:00:27,470
WPE scan and we have found as Nikkie.

6
00:00:27,900 --> 00:00:32,990
So I don't know what it says is incorrect.

7
00:00:33,350 --> 00:00:37,170
So this is the auto generated password that it has some strong.

8
00:00:37,900 --> 00:00:46,770
I know what you're going to do is we are going to, uh, brute force this user with the passwords,

9
00:00:46,950 --> 00:00:47,950
with the WP scan.

10
00:00:48,990 --> 00:00:52,590
So first, let me create a, uh, polished file.

11
00:00:56,160 --> 00:01:09,270
So in that I do some random passwords, I follow morning lobbyists or press etc. Now with these strings

12
00:01:09,270 --> 00:01:15,900
I put in my password because I want to demonstrate that this tool will identify the login.

13
00:01:16,260 --> 00:01:20,430
So that specialty here and then it's some random characters.

14
00:01:20,700 --> 00:01:25,310
And let's sell this so you can view the file.

15
00:01:27,630 --> 00:01:28,830
You have this password.

16
00:01:29,250 --> 00:01:32,600
So now you're going to brute force with the scan.

17
00:01:32,790 --> 00:01:41,070
So this is very useful when the user help with the de facto passwords are the weak passwords, Heidi.

18
00:01:41,100 --> 00:01:44,730
So an issue to use the Raquela as a wall fight.

19
00:01:45,610 --> 00:01:56,310
We will be scanned and you, uh, need to specify the user and what you use, minus you for user and

20
00:01:56,310 --> 00:02:02,270
say, uh, neki and computer password.

21
00:02:03,090 --> 00:02:05,850
And it's in the home directory, home

22
00:02:09,090 --> 00:02:13,950
and password, you know, if you could enter it to try for brute force.

23
00:02:25,020 --> 00:02:27,000
So it's capital, you sorry for the.

24
00:02:34,400 --> 00:02:38,670
So very combination's font, you can see the username and password of this one.

25
00:02:39,650 --> 00:02:43,220
So now you can just log into this.

26
00:02:44,360 --> 00:02:45,440
We just copy here.

27
00:02:50,460 --> 00:02:56,660
So let's copy this and remember it so successfully routinized.

28
00:02:57,630 --> 00:03:06,050
So this is all about forcing this WordPress login page using the web is can I introduce you to change

29
00:03:06,060 --> 00:03:09,060
the otherwise normal user?

30
00:03:09,060 --> 00:03:17,040
Will the attacker will brute force the user and the password crunchers generally need to put a strong

31
00:03:17,040 --> 00:03:19,190
password to generate a password.

32
00:03:19,560 --> 00:03:20,570
So that's better.

33
00:03:21,420 --> 00:03:26,370
And if it had been had been higher, I'd been password than it would be easy to grasp.

34
00:03:26,730 --> 00:03:29,220
So that's why I always keep the strong passwords.