SecLists by Daniel Miessler

This repository is “a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.”

Stumbled upon it while trying out wpscan. Within wpscan, you can pass in a wordlist of potential passwords and it’ll loop through them all against a given user.

Revert to a previous theme via MySQL

If you install a new WordPress theme and it doesn’t work and it even breaks wp-admin, you can revert back to the previous theme by modifying a few values in the wp_options table:

update wp_options set option_value = '<old theme basename>' where option_key in ('template', 'stylesheet');
update wp_options set option_value = '<old theme proper name>' where option_key = 'current_theme';

Where “basename” is the name of the directory within /wp-content/themes/ and “proper name” is the name metadata as provided in style.css.