0009511: [New Tool] zeroday - Advanced WordPress Exploitation Framework - Kali Linux Bug Tracker

ID	Project	Category	View Status	Date Submitted	Last Update

0009511	Kali Linux	New Tool Requests	public	2026-01-18 03:23	2026-01-18 03:23

Reporter	Quantum Project	Assigned To
Priority	normal	Severity	minor	Reproducibility	have not tried
Status	new	Resolution	open

Summary	0009511: [New Tool] zeroday - Advanced WordPress Exploitation Framework
Description	Hello Kali Team, I'd like to propose the inclusion of ZeroDay, an offensive security framework designed for WordPress reconnaissance, vulnerability detection, and ethical exploitation. � GitHub Repository: https://github.com/quantumproject/zeroday � License: MIT � Language: Python 3 � Debian Dependencies: python3, python3-requests, python3-beautifulsoup4, python3-lxml � Key Features User Enumeration: Safe (REST API, author ID) + Aggressive (login error brute-force) Client-Side Deep Scan: Detects API keys, DOM XSS, hidden endpoints, and developer comments in JS Exploit Chain: From XSS → beacon → session capture (localhost-only by default) Ethical Safeguards: C2 server binds only to 127.0.0.1 No remote payload without explicit user opt-in Clear warnings for aggressive modes �️ Use Case Designed exclusively for authorized penetration testing, bug bounty programs, and security research. The tool includes strong defaults to prevent accidental misuse. � Packaging Compliant with Debian policy Includes man page (`zeroday.1`) Desktop entry for GUI environments Thank you for considering ZeroDay for inclusion in Kali Linux. — quantumproject
Attached Files	zeroday-deb-package.zip (108,886 bytes)

Date Modified	Username	Field	Change
2026-01-18 03:23	Quantum Project	New Issue
2026-01-18 03:23	Quantum Project	File Added: zeroday-deb-package.zip