WPSCAN - WordPress Security & vulnerability Scanner
The Hacker News

WPScan is a vulnerability scanner which checks the security of WordPress installations using a black box approach.

Details
  • Username enumeration (from author querystring and location header)
  • Weak password cracking (multithreaded)
  • Version enumeration (from generator meta tag)
  • Vulnerability enumeration (based on version)
  • Plugin enumeration (2220 most popular by default)
  • Plugin vulnerability enumeration (based on version) (todo)
  • Plugin enumeration list generation
  • Other misc WordPress checks (theme name, dir listing, ...)

DOWNLOAD HERE

DEMO

Found this article interesting? Follow us on Google News, Twitter and LinkedIn to read more exclusive content we post.