Tools

Published on July 13th, 2011 | by NJ Ouchn

0

WordPress Security Scanner released

WPScan is a vulnerability scanner that checks for WordPress Installation discrepancies.

Features

• Username enumeration (from author querystring and location header)
• Weak password cracking (multithreaded)
• Version enumeration (from generator meta tag)
• Vulnerability enumeration (based on version)
• Plugin enumeration (2220 most popular by default)
• Plugin vulnerability enumeration (based on version) (todo)
• Plugin enumeration list generation
• Other misc WordPress checks (theme name, dir listing, …)

Download

Tags: Configuration Checks, Default Configuration, Enumeration, Vulnerability Scanner, WordPress Security Scanner

About the Author

NJ Ouchn "Passion is needed for any great work, and for the revolution, passion and audacity are required in big doses"

Related Posts

Enumdb Beta – Brute Force MySQL and MSSQL Databases →

GAN v1.0 – A SSL Subdomain Extractor →

Prowler v1.6 – AWS Security Assessment and Forensics Tool →

Lynis v2.5.2 Released →