LinuxTools Hacking

WPScan WordPress Vulnerability Scanner

WPScan Scanner

Ahmed Ferdoss October 31, 2018
0 786 Less than a minute
WPScan-Scanner
WPScan-Scanner

WPScan WordPress Vulnerability Scanner

 

WPScan is a free tool, for non-commercial use, black box WordPress vulnerability scanner written for security professionals and blog maintainers to test the security of their sites.

WPScanThis will scan the blog using default options with a good compromise between speed and accuracy. For example, the plugins will be checked passively but their version with a mixed detection mode.

 

INSTALL

Prerequisites:

  1. Ruby >= 2.2.2 – Recommended: 2.3.3
  2. Curl >= 7.21 – Recommended: latest – FYI the 7.29 has a segfault
  3. RubyGems – Recommended: latest

Usage

WPScan can load all options (including the –url) from configuration files, the following locations are checked (order: first to last):

  • ~/.wpscan/cli_options.json
  • ~/.wpscan/cli_options.yml
  • pwd/.wpscan/cli_options.json
  • pwd/.wpscan/cli_options.yml

PROJECT HOME
https://wpscan.org

VULNERABILITY DATABASE
https://wpvulndb.com

 

Tags

Ahmed Ferdoss

Related Articles

Janusec Application Gateway

Janusec Application Gateway

November 28, 2018
KillShot Tool

KillShot Gathering Tool

October 31, 2018
WAScan - Web Application Scanner

WAScan – Web Application Scanner

January 18, 2019

GoScan Interactive Network Scanner

November 15, 2018

Leave a Reply

Your email address will not be published. Required fields are marked *

© Copyright 2019, All Rights Reserved  | 
Back to top button
Close