Using Fail2Ban for WordPress on Ubuntu

In this post I show how to set up Fail2Ban to protect your wordpress blog or site from brute force attacks. This is written specifically for Ubuntu but will work (in a general sense) on any linux distribution. Brute forcing your way into a WordPress blog’s administration account is not difficult unless the system admin ...

WordPress Dictionary Attack

Wordpress Dictionary Attack
A lot of clients seem to be using WordPress in one form or another and this can sometimes provide usernames/passwords that are used on other systems. Here is a quick script to perform dictionary based penetration testing on WordPress. I normally use this with my own modified rockyou password list as well as the 10-k password ...