比较详细的实操栗子
    https://www.freebuf.com/column/228732.html

    WPScan
    https://github.com/wpscanteam/wpscan

    1. docker run -it --rm wpscanteam/wpscan --url https://target.tld/ --enumerate u
    3. # 枚举用户
    4. wpscan –-url www.kyweb.net enumerate u
    5. wpscan –-url www.kyweb.net enumerate u1-100
    7. # 指定密码字典
    8. wpscan -–url www.kyweb.net --passwords wd.txt --usernames 用户名
    9. docker run -it -v /home/zcs/tttt:/data:ro --rm wpscanteam/wpscan --url gm10086.cn --passwords /data/wd.txt --usernames gm
    11. # 枚举易攻击插件
    12. wpscan --url 10.11.5.62 -e vp
    14. # 枚举易攻击主题
    15. wpscan --url www.xxxxx.wiki -e vt

    curnch 创建密码字典
    https://www.cnblogs.com/goser/articles/7729390.html
    https://github.com/crunchsec/crunch
    https://sourceforge.net/projects/crunch-wordlist/

    1. # 安装
    3. wget https://sourceforge.net/projects/crunch-wordlist/files/crunch-wordlist/crunch-3.6.tgz
    4. tar  xf  crunch-3.6.tgz
    5. cd crunch-3.6
    6. gcc -Wall -lm -pthread -std=c99 -m64 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 crunch.c -o crunch -lm
    7. make install
    1.  *  usage: ./crunch <min-len> <max-len> [charset]
    2.  *  e.g: ./crunch 3 7 abcdef
    3.  *  crunch <from-len> <to-len> [-f <path to charset.lst> charset-name] [-o wordlist.txt or START] [-t [FIXED]@@@@] [-s startblock]
    5.  *  -t [FIXED]@,%^  : allows you to specify a pattern, eg: @@god@@@@
    6.  *                where the only the @'s will change with lowercase letters
    7.  *                the ,'s will change with uppercase letters
    8.  *                the %'s will change with numbers
    9.  *                the ^'s will change with symbols
    11. crunch 9 9 -t gm10086^^ > wd.txt
    12. crunch 8 8 -t gm10086^ >> wd.txt
    13. crunch 7 7 -t gm%%%%% >> wd.txt