Steps:
- Open up kali linux terminal
- Type this command to brute force password on the wordpress admin login
wpscan –url TARGET.WEBSITE.COM -P PATH/TO/PASSWORD -U USERNAME
In this case, i put my wordlist on a file named password.lst and the username @user3
- It will run all the combinations of the username with all the word on password list
- If it matches, it will later notify the password