sQuo Posted November 27, 2011 Share Posted November 27, 2011 This is the hidden content, please Sign In or Sign Up WPScan is a vulnerability scanner which checks the security of WordPress installations using a black box approach. Changelog v1.1 Detection for 750 more plugins. Detection for 107 new plugin vulnerabilities. Detection for 447 possible timthumb file locations. Advanced version fingerprinting implemented. Full Path Disclosure (FPD) checks. Auto updates. Progress indicators. Improved custom 404 checking. Improved plugin detection. Improved error_log checking. Lots of bugs fixed. Lots of small tweaks. See This is the hidden content, please Sign In or Sign Up Principal Features Username enumeration (from author querystring and location header) Weak password cracking (multithreaded) Version enumeration (from generator meta tag and from client side files) Vulnerability enumeration (based on version) Plugin enumeration (2220 most popular by default) Plugin vulnerability enumeration (based on plugin name) Plugin enumeration list generation Other misc WordPress checks (theme name, dir listing, …) Download: This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
juhscr Posted December 14, 2011 Share Posted December 14, 2011 Hermano esta herramientas es muy buena en cuanto a wp, pero lo malo es que solo cheka vulnerabilidades antiguas y no se actualiza con las nuevas y mucho menos 0days! Link to comment Share on other sites More sharing options...
Recommended Posts