Concept: Totally 3 passwords we need to find, 1st password, we can grab from robots.txt Using hydra and wpscan, we can grab WordPress Credentials After login to WordPress, we can achieve a Reverse shell Then cd /home can get 2nd password[dehash using some tool] back to Root,Then log in, using…