CrowdSec

WPSCAN - WordPress Security & vulnerability Scanner

Jul 12, 2011Mohit Kumar

WPSCAN - WordPress Security & vulnerability Scanner

The Hacker News

WPScan is a vulnerability scanner which checks the security of WordPress installations using a black box approach.

Details

Username enumeration (from author querystring and location header)
Weak password cracking (multithreaded)
Version enumeration (from generator meta tag)
Vulnerability enumeration (based on version)
Plugin enumeration (2220 most popular by default)
Plugin vulnerability enumeration (based on version) (todo)
Plugin enumeration list generation
Other misc WordPress checks (theme name, dir listing, ...)

DOWNLOAD HERE

DEMO

Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.

Downloads, GENERAL NEWS, Hacker News, Tools

Breaking News

Cybersecurity Resources

Save Time on Network Security With This Guide

See how Perimeter 81's network security platform makes an IT Manager's workday more efficient.

cybersecurity webinar

How to Prevent Your Network (And Your Job) From Being at Risk

Learn how to achieve better network security, and reduce your TCO, with a converged, cloud-based solution. Get your free guide.

cybersecurity webinar

The Ultimate Guide to Vulnerability Scanning

Everything you need to know to get started with vulnerability scanning and choose the right product for your business.

Learn Ethical Hacking Online

Earn a Master's in Cybersecurity Risk Management

Lead the future of cybersecurity risk management with an online Master's from Georgetown.