Published on March 13th, 2015 | by MaxiSoler


[New Tool] CMSmap v0.3 – Simple CMS Scanner Released

CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs. The main purpose of CMSmap is to integrate common vulnerabilities for different types of CMSs in a single tool.

At the moment, CMSs supported by CMSmap are WordPress, Joomla and Drupal.



CMSmap tool v0.3 - Simple CMS Scanner
Author: Mike Manzotti mike.manzotti@dionach.com
Usage: cmsmap.py -t <URL>
 -t, --target target URL (e.g. 'https://abc.test.com:8080/')
 -v, --verbose verbose mode (Default: false)
 -T, --threads number of threads (Default: 5)
 -u, --usr username or file 
 -p, --psw password or file
 -i, --input scan multiple targets listed in a given text file
 -o, --output save output in a file
 -k, --crack password hashes file
 -w, --wordlist wordlist file (Default: rockyou.txt - WordPress only) 
 -a, --agent set custom user-agent 
 -U, --update (C)MSmap, (W)ordpress plugins and themes, (J)oomla components, (D)rupal modules
 -f, --force force scan (W)ordpress, (J)oomla or (D)rupal
 -F, --fullscan full scan using large plugin lists. Slow! (Default: false)
 -h, --help show this help
Example: cmsmap.py -t https://example.com
 cmsmap.py -t https://example.com -f W -F
 cmsmap.py -t https://example.com -i targets.txt -o output.txt
 cmsmap.py -t https://example.com -u admin -p passwords.txt
 cmsmap.py -k hashes.txt

More Information: here


Tags: , ,

About the Author

www.artssec.com @maxisoler

Back to Top ↑