Hacking Wordpress with Python in seconds (using Dark Web and Telegram data)
Key Takeaways
This video demonstrates how to use the Flare API and Python to hack into WordPress websites using leaked credentials from the dark web and Telegram channels, highlighting the importance of cybersecurity and password security. The video showcases the use of tools such as Flare API, Telegram, and Selenium to automate the process of attempting to log into WordPress websites using leaked credentials.
Full Transcript
May this be a warning to both you and your family. This is based on a true story. My team and I have created a Python script that can hack WordPress sites very, very easily. So, I'm going to use Python to run the Flare API script. Press enter. Web browser is opened. Automatic attempts are made to log to the WordPress website. And there you go. I've been able to log in. This is a test website that we created for this demonstration. We own this website. I've given myself permission to hack this website. Very important. Never hack websites that you do not have permission to attack. This script leverages leaked credentials on the dark web and Telegram channels to try different usernames and passwords to attack the website. In this example, the password that succeeded included the binary number 001 001. So in other words, 9 in decimal. This is a real password that was leaked on the dark web. Now, to protect the person's identity, let's call him Harry. Hi, I'm Harry. No, not that Harry. This Harry's passwords were leaked in the Adobe breach of 2013. That information was used to hack his company's website. This was a real company. They defaced his company's website, which was a WordPress website, very similar to what I'm showing you here. Fortunately for him, he had a backup of the website locally, so he could restore the website. But obviously this was a massive nightmare for them. A real company's website got hacked using leaked credentials from the dark web. Now once Harry's website got hacked, he started using really strong passwords. The passwords that he'd been using to this date weren't very good, but he started using like 30 character passwords. So he thought he was safe, but that's not enough. He was storing those passwords in a file on his computer. A really bad idea. highly recommend that you use a password manager rather than storing the files in a text file as an example on your computer because malware could be used to steal your passwords and cookies from your computer. So, you want to use 2FA. This stuff is so important. Make sure that people are aware of this. Now, you may know this, but there are many, many people out there that are not aware of the issues of passwords being leaked on the dark web and in Telegram channels. But the question for a lot of companies and a lot of people is, how do you know that your credentials have been leaked? Where do you go? Do you need to run tour to go and find those credentials? Do you need to try and access Telegram channels or, you know, how do you find these details? I really want to thank Flare for sponsoring this video. We've been using their software for a while now. It's amazing how much information is leaked out there. It's actually very easy to do this and get notifications of leaked credentials. I can go to identifiers. At the moment, we're running various identifiers against davidbombell.com. I'll create an identifier. Now you could specify a domain, name, keyword, other options, but I'll simply specify email here. I'll put in the person's email address. I could create an alert to get a notification if a password associated with that email address has been leaked. And I'll create an identifier. And now it's as simple as clicking on events. And you can see right here, high severity passwords have been leaked. And going through this, I can see passwords for this person. So as an example here, you can see his password was leaked in the 2013 Adobe breach. Companies are being hacked all the time. You could put your email address into Have I been pawned as an example? So in this example, we can see that this account has been pawned. There's the Adobe breach as mentioned on Troy Hunt's have I been pawned website. You can see Canva email address or password was affected. So on the Adobe breach, it was username, email, and encrypted password and a password hint in plain text that was leaked. Canvas suffered 137 million record breach and it goes on and on and on. Various websites were compromised including LinkedIn and Twitter. So your usernames and your passwords are probably out there. The users in your company's passwords are probably out there. In this Python script example, what we're doing is leveraging the API of Flare. So, we're connecting to the Flare API, searching for a username or an email address or something. In this example, the email address was was searched for and then we are creating a leaked credentials JSON file which is then used by the Python script to try and log into the website. So, here's the JSON file that was created by leveraging the Flare API. And we can see an email address. And then we can see other information in this file. And that is what we use once again to attack the website. Now this script is 373 lines of code. Allows us to attack WordPress websites by simply searching for instance for an email address, leveraging the Flare API, pulling the information back, and then opening up a web browser using Selenium and actually logging into the website. So I'll run that script again. So firstly I'll log out of the WordPress website. I'll shut down Chrome. I'll run the script again. And what you'll notice script starts running. It's connecting to the API. It opens a web browser. Goes to the admin login page of the WordPress website and then attempts to log in. And there you go. I've been able to log in. Now the great thing about FL once again is you can get notifications of breaches like this on my website davidbble.com if I look at events I can see various events taking place and then I can filter for the events for instance to only see high and critical severity events and see if there are attacks against my domain. Now, to get you started, we've created a PDF which I've linked below that shows you how to log into Flare and how to create identifiers and get notifications of leaks and breaches. But just be aware, this is not just the dark web that's been searched by Flare. It's also Telegram channels. And one of the big problems you need to be aware of is stealer logs. Malware can be used to get active usernames and passwords. So stealer logs are generated when a device such as your laptop as an example has malware on it and that's harvested to get sensitive information. This could include cookies as an example, browser history, your username, your passwords and other personal information. And the problem here is this is actual information. It's not old usernames and passwords. You might have changed your password on a site after a breach because you got a notification or an email telling you that you need to reset your password. The problem here is unlike other data breaches, this information is live and very dynamic. When I interviewed Tom at Cisco Live, he told me that one of the biggest problems today in cyber security is this issue of the leaked credentials. Why would an attacker or hacker try and hack in when they can simply log in using breached or leaked credentials as I've demonstrated in this video? Now, the Flair team asked me to highlight this. They've been asked many, many times, can flare be used for personal use and the answer is no. This is a business product. It's a threat intelligence product to help businesses better protect themselves and their employees. It hasn't been created specifically for individuals. So, let's get a bit more technical and I'll show you a little bit more about the script. As we've noted in the script information here, you shouldn't store your API key in your script. Store it in an ENV file. And that's what we've done here. We are going to load the API key for Flare from the ENV file rather than storing it in our Python script. So what the script is doing once again is it's using the API key to access the Flare API retrieving information for a user, in this case an email address, and then it uses the Chrome web driver to open up a web browser and access a website. You can see that we're running a loop here. So for the credential information such as email, we are trying the email address and then we are trying passwords. So once again looping through the different passwords and sending the password and then clicking on the website. So we are submitting the username and the password to the login path to log to the WordPress website. So here you can see once again send the email, send the password, click on the website to login. If we successfully log in then we break the script. So here we define API related information. We get the API key. We specify our tenant ID. We specify the URL which in this case is API.flare.io. We're getting our JWT token here. Now to ensure that we don't abuse the API, they've limited us to only sending requests every second. So we sleep for a while and then we try and run the request again. We open this file, the leaked credentials JSON file. So once again, that's the file with the credentials in. And then we write the credentials to the file, which we can then use to log into the WordPress website. It does that by creating a dictionary of the credentials and then loops through the credentials. So you can see it's looking for the email. It's looking for the password and then visiting this website to login using the Chrome web browser. Okay, so I think that's enough for this video. I wanted to show you the power of Flare and big shout out to them once again for sponsoring this video, for allowing me to better protect myself and the people that work with me. It's really important that you realize that your passwords are out there because of data breaches. You need to use unique passwords on every website. Don't reuse your passwords. Use a password manager to make sure that your passwords are unique and that you store them in a secure location. Use two-factor authentication because if your password does get out there, hackers can't simply log in because of 2FA. Okay, let me know what you think. Hopefully, you enjoyed this video. Please put your comments below. Would you like us to teach you more about using Python to do these kind of things? Would you like to learn more about Flare and how we can find elite credentials on Telegram channels as well as the dark web? I'm David Bumble. I want to wish you all the very best. [Music]
Original Description
Big thanks to Flare for sponsoring this video. You can track down cybercrime and manage threat intelligence or your own exposed attack surface with Flare! Try a free trial and see what info is out there. https://try.flare.io/david-bombal/
Your usernames and passwords are out there. So many breaches are happening and passwords are being posted on the Dark Web and Telegram channels. And to make things worse, stealer logs are stealing information from computers using malware.
// Link PDF //
Download here: https://davidbombal.wiki/flare1
// YouTube videos REFERENCE //
Why hack when you can just log in?: https://youtu.be/jmdCArq8Mmc
// David's SOCIAL //
Discord: https://discord.com/invite/usKSyzb
X: https://www.twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal
YouTube: https://www.youtube.com/@davidbombal
// MY STUFF //
https://www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
// MENU //
00:00 - Introduction
00:11 - Demo of Python login to Wordpress
00:25 - Permission when hacking websites
00:36 - How the script works
01:04 - How Harry got hacked
01:51 - Using a password manager
02:13 - Passwords leaked on the dark web
02:37 - Flare Demonstration
03:35 - Your username is probably out there
04:13 - Using Flare API
05:06 - Demonstration
05:35 - Flare notifications
06:02 - PDF guide
06:21 - Beware of Stealer Logs
07:04 - Leaked credentials
07:20 - Flare helps businesses
07:33 - Demonstration of the script
09:42 - Conclusion
10:32 - Outro
tor
telegram
python
wordpress
dark web
deep web
flare
flare io
php
onion
onion websites
malware
haveibeenpwned
stealerlogs
stealer malware
malware analysis
cybersecurity
cybersecurity jobs
hacking
ethical hacking
hacking jobs
cyber security career
cybersecurity
cybersecu
Watch on YouTube ↗
(saves to browser)
Sign in to unlock AI tutor explanation · ⚡30
Playlist
Uploads from David Bombal · David Bombal · 0 of 60
← Previous
Next →
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
RYU SDN Controller Part 4: Graphical User Interface (GUI): Practical GNS3 SDN and OpenFlow
David Bombal
HPE Network Protector SDN Application Part 1 - Introduction
David Bombal
HPE Network Protector SDN Application Part 2 : DNS Interception using OpenFlow
David Bombal
HPE Network Protector SDN Application Part 3 - Lab Setup using Physical Switches
David Bombal
HPE Network Protector SDN Application Part 4 - Demo of malicious websites blocked
David Bombal
HPE Network Protector SDN Application Part 5 - Demo OpenFlow table interception flows
David Bombal
HPE Network Protector SDN Application Part 6 - Demo of Physical Switch configuration
David Bombal
HPE Network Protector SDN Application Part 7 - Demo Service Insertion Tunnel / GRE Tunnel
David Bombal
HPE Network Protector SDN Application Part 8 - Demo SDN OpenFlow Reporting
David Bombal
HPE Network Protector SDN Application Part 9 - Demo switches interception of DNS traffic
David Bombal
GNS3 Talks: GNS3 version 1.5.X Appliance Tips
David Bombal
CCNA 200-125 Exam: AAA demo: TACACS+ with GNS3
David Bombal
GNS3 2.0.0 beta 2 install
David Bombal
CCNA #012: Learn SNMP with GNS3, Wireshark and Solarwinds NPM - CCNA 200-125 exam
David Bombal
CCNA #013: Spanning Tree CCNA Exam Questions: Know the answer? CCNA 200-125 exam
David Bombal
GNS3 2.0.0 beta : GNS3 VM integration with GNS3 GUI
David Bombal
CCNA #018: Routing exam questions: Who wins? OSPF, EIGRP or RIP? Sure? CCNA 200-125 exam
David Bombal
CCNA #019: Spanning Tree CCNA Exam Questions: Root Bridge, Root Port and more: CCNA 200-125 exam
David Bombal
GNS3 Download, installation and configuration - GNS3 1.5.3 and Windows 10
David Bombal
CCNA #023 EIGRP Neighbor Troubleshooting (DUAL Issues) for the CCNA 200-125 Exam
David Bombal
GNS3 2.0 Architecture and schema Part 1: What is the GNS3 Controller?
David Bombal
GNS3 2.0 Architecture and schema Part 2: Emulators and virtualization
David Bombal
CCNA #028 VTP Troubleshooting for the CCNA 200-125 Exam
David Bombal
CCNA #029 VTP & DTP Troubleshooting for the CCNA 200-125 Exam
David Bombal
CCNA #030 VTP Troubleshooting for the CCNA 200-125 Exam
David Bombal
GNS3 : How to download Cisco IOS images and VIRL images. Which is the best? How do you get them?
David Bombal
GNS3 ASA setup: Import and configure Cisco ASAv with GNS3
David Bombal
GNS3 switching setup and options: Cisco and other switching options in GNS3
David Bombal
GNS3 switching setup and options Part 2: GNS3 unmanaged built-in switch
David Bombal
GNS3 switching setup and options Part 3: Router on a sick with GNS3 unmanaged built-in switch
David Bombal
GNS3 switching setup and options Part 4: Etherswitch Router for Cisco Dynamips Part 1
David Bombal
GNS3 switching setup and options Part 5: Etherswitch Router for Cisco Dynamips Part 2
David Bombal
GNS3 switching setup and options Part 6: Etherswitch, Wireshark, 802.1Q, InterVLAN routing
David Bombal
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 1: GNS3 Switching Part 7
David Bombal
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 2: GNS3 Switching Part 8
David Bombal
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 3: GNS3 Switching Part 9
David Bombal
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 4: GNS3 Switching Part 10
David Bombal
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 5: GNS3 Switching Part 11
David Bombal
GNS3 Nexus (NX-OSv) switch setup and configuration Part 1: GNS3 switching options Part 12
David Bombal
GNS3 Nexus (NX-OSv) switch setup and configuration Part 2: GNS3 switching options Part 13
David Bombal
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 6: GNS3 Switching Part 14
David Bombal
GNS3 Talks: Docker, Open vSwitch, SDN and OpenFlow Part 7: GNS3 Switching Part 15
David Bombal
GNS3 Cisco CSR 1000v setup and configuration Part 1: GNS3 NFV
David Bombal
GNS3 Cisco CSR 1000v setup and configuration Part 2: GNS3 NFV
David Bombal
GNS3 Talks: Use the NAT node to connect GNS3 to the Internet easily!
David Bombal
GNS3 Talks: GNS3 2.0 RC1 is now available
David Bombal
GNS3 Talks: GNS3 2.0 Portable Projects - easily export and import GNS3 projects
David Bombal
GNS3 Talks: Multiple clients sharing projects in real time, plus console session shadowing!
David Bombal
CCNA #035 NAT Troubleshooting Scenario 1 - Can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
CCNA #036 NAT Troubleshooting Scenario 2 - Can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
GNS3 Talks: ESXi, GNS3 VM and KVM support Part 1: leverage servers and the cloud
David Bombal
CCNA #037 OSPF Troubleshooting - can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
GNS3 Talks: ESXi, GNS3 VM and KVM support Part 2: leverage servers and the cloud
David Bombal
CCNA #038 NAT Troubleshooting Scenario 3 - Can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
CCNA #039 - OSPF DR, BR and DROTHER Election - do you know the answers?
David Bombal
CCNA #040 NAT Troubleshooting Scenario 4 - Can you find the issue? CCNA Exam 200-125 troubleshooting
David Bombal
GNS3 Talks: Arista vEOS GNS3 import and configuration Part 1
David Bombal
CCNA #041 - OSPF DR, BR and DROTHER Election - do you know the answers?
David Bombal
GNS3 Talks: Arista vEOS GNS3 import and configuration Part 2
David Bombal
GNS3 Talks: ipterm: Linux, Docker, Python, SDN and more! Part 1
David Bombal
More on: AI Security
View skill →Related Reads
📰
📰
📰
📰
The Security Liability of Memory Allocation in TEEs: A Design Decision Log
Dev.to · Theo Ezell (webMethodMan)
Singapore Built an Army of Cyber Defenders and the Hackers Came Anyway
Medium · Cybersecurity
SaaS Security Best Practices: Auth, Authorization, and Data Protection
Dev.to · sweet
33 Days of Certified Vibe Hacker by Hacker Sidekick -README
Medium · Cybersecurity
Chapters (19)
Introduction
0:11
Demo of Python login to Wordpress
0:25
Permission when hacking websites
0:36
How the script works
1:04
How Harry got hacked
1:51
Using a password manager
2:13
Passwords leaked on the dark web
2:37
Flare Demonstration
3:35
Your username is probably out there
4:13
Using Flare API
5:06
Demonstration
5:35
Flare notifications
6:02
PDF guide
6:21
Beware of Stealer Logs
7:04
Leaked credentials
7:20
Flare helps businesses
7:33
Demonstration of the script
9:42
Conclusion
10:32
Outro
🎓
Tutor Explanation
DeepCamp AI