WordPress Fundamentals
Core file layout, configuration, key directories, and user roles.
WordPress Enumeration
Fingerprinting, user discovery, plugin and theme enumeration, and endpoint
mapping.
WordPress Exploitation
Credential abuse, vulnerable extensions, authenticated code execution, and
post-exploitation validation.
WordPress Hardening
Security controls, attack-surface reduction, and defensive baselines for
production WordPress deployments.