LinuxTools Hacking

WPScan WordPress Vulnerability Scanner

WPScan Scanner

Ahmed Ferdoss October 31, 2018
0 734 Less than a minute
WPScan-Scanner
WPScan-Scanner

WPScan WordPress Vulnerability Scanner

 

WPScan is a free tool, for non-commercial use, black box WordPress vulnerability scanner written for security professionals and blog maintainers to test the security of their sites.

WPScanThis will scan the blog using default options with a good compromise between speed and accuracy. For example, the plugins will be checked passively but their version with a mixed detection mode.

 

INSTALL

Prerequisites:

  1. Ruby >= 2.2.2 – Recommended: 2.3.3
  2. Curl >= 7.21 – Recommended: latest – FYI the 7.29 has a segfault
  3. RubyGems – Recommended: latest

Usage

WPScan can load all options (including the –url) from configuration files, the following locations are checked (order: first to last):

  • ~/.wpscan/cli_options.json
  • ~/.wpscan/cli_options.yml
  • pwd/.wpscan/cli_options.json
  • pwd/.wpscan/cli_options.yml

PROJECT HOME
https://wpscan.org

VULNERABILITY DATABASE
https://wpvulndb.com

 

Tags

Ahmed Ferdoss

Related Articles

Anti-DDoS
November 14, 2018
1,324

Anti-DDOS – Anti DDOS Bash Script

November 15, 2018
832

GoScan Interactive Network Scanner

ModSecurity Framework FTW
January 19, 2019
423

ModSecurity Framework FTW

Janusec Application Gateway
November 28, 2018
714

Janusec Application Gateway

Leave a Reply

Your email address will not be published. Required fields are marked *

© Copyright 2019, All Rights Reserved  | 
Close