We just published a list of general attack vectors and a couple of tools you can use to try and penetrate WordPress.
Today’s tip: Think bigger!
WordPress is hosted on a web server. If the WordPress you’re trying to get access to is set up like a goddamn fortress, maybe the underlying web server is not? Give it some thought.
We will get back to fingerprinting servers in future posts. If we’re still alive in the future 🙂