Improvement: Check against username and also website URL related password.

morissette / insecure-wp-admin-password-check

Finds Wordpress Admin account with commonly used insecure passwords

1 stars 0 forks source link

Improvement: Check against username and also website URL related password. #1

Open hostingrajamani opened 9 years ago

hostingrajamani commented 9 years ago

Hello,

First of all, I congratulate for you writing this wonderful piece of software. I have some improvement ideas, Please consider If you think, It is okay.

1) You can get more password list from https://wiki.skullsecurity.org/Passwords and include them to check against lots of list

2) You can check against the username of the DB, table. For example, In cPanle username typically, will be /home/username , you can improve the script to check against username123, username, usernameXYZ

morissette commented 7 years ago

My apologies for the two years it has taken me to see these issues. Reviewing...