Kali Linux bypass WordPress WAF

After some basic scans your PUBLIC-IP address will probably get blocked by the WAF. You can solve this by using proxies, but in this example we will route the traffic using tor with proxychains.

To route through Tor, first install and start Tor:

sudo apt install tor -y
sudo systemctl start tor
sudo systemctl enable tor

Then, add the Tor SOCKS5 proxy to Proxychains (/etc/proxychains.conf): sudo nano /etc/proxychains.conf

socks5 127.0.0.1 9050

Now, use Proxychains with Tor:

roxychains wpscan --url http://example.com

To test if your IP is changing:

proxychains curl ifconfig.me

Last updated 11 months ago