Exploit your way into tomorrow.
We believe in changing the status quo. We believe in offensive tools for every user, every platform.
Learn more
Features
Black box WordPress scanner
PwnPress Framework performs fully automated reconnaissance and vulnerability checks against WordPress targets — no credentials or source access needed.
Intelligent target filtering
PwnPress can validate massive URL lists and instantly isolate real WordPress sites. It detects version info, plugin exposure, and organizes targets by vulnerability potential.
Exploitation & payload automation
Whether you're brute forcing via XML-RPC, generating phishing pages with built-in credential harvesting, or crafting malicious HTTP payloads — PwnPress handles the dirty work.
Want to know more? Subscribe to our Newsletter!
Download
Source code and further information available on Github ⇢.