Discover the tips and techniques used to attack and break into Joomla based websites. An understanding of these hacker techniques will enable you to be prepared to keep your sites secure.
Additionally, penetration testers or red teams needing to exploit Joomla targets will also find practical hints in this guide.
Enumeration | Recon
1. Joomla Identification & Version
2. Enumerate Extension & Version
3. Enumerate Templates
4. Enumerate Users
5. Directory Indexing
6. Network Service Discovery
7. Bypass Sucuri or CloudFlare Web Firewall
8. JoomlaVS & Other Tools
Exploitation | Attacks
9. Brute Force Login
10. Exploit Extensions
11. Exploit Templates
12. Exploit Joomla Core
13. Sniff and Capture Credentials
14. Vulnerable Server Software
15. Compromise Systems Administration Tools
20. Content Discovery
Source: Security Feed