Home > Tools > Wpscan (WordPress Security Scanner)

Wpscan (WordPress Security Scanner)

I stumbled upon this great tool to hack a WordPress site called “Wpscan“. The creator of this tool is ethicalhack3r and this is another creation built from WordPress Brute Force Tool. This tool comes pre-installed on this following Linux-distributions:

The Wpscan only supports Ruby version 1.9.

You can install this on Ubuntu, Debian or Mac OSX:

Ubuntu/Debian:

sudo apt-get install libcurl4-gnutls-dev libopenssl-ruby
sudo gem install typhoeus nokogiri json

Mac OSX:

sudo gem install typhoeus nokogiri json

The known issues that you should be awared of:

  • Typhoeus segmentation fault  Update curl to at least v7.21 (you may have to install it from sources)  See http://code.google.com/p/wpscan/issues/detail?id=81
  • If you have one the following errors : “-bash: !t: event not found”, “-bash: !u: event not found”  It happens whith enumeration : just put the ‘t’ or ‘u’ before the ‘p!’ : ‘-e tp!’ instead of ‘-e p!t’

The Wpscan arguments can you see below:

–url | -u The WordPress URL/domain to scan.

–force | -f Forces WPScan to not check if the remote site is running WordPress.

–enumerate | -e [option(s)] Enumeration.
option:
u usernames from id 1 to 10
u[10-20] usernames from id 10 to 20 (you must write [] chars)
p plugins
p! only vulnerable plugins
t timthumbs

Multiple values are allowed : ‘-e tp’ will enumerate timthumbs and plugins
If no option is supplied, the default is ‘upt’

–follow-redirection If the target url has a redirection, it will be followed without asking if you wanted to do so or not

–proxy Supply a proxy in the format host:port (will override the one from conf/browser.conf.json)

–wordlist | -w Supply a wordlist for the password bruter and do the brute.

–threads | -t The number of threads to use when multi-threading requests. (will override the value from conf/browser.conf.json)

–username | -U Only brute force the supplied username.

–help | -h This help screen.

–verbose | -v Verbose output.

Wpscan examples:

Do ‘non-intrusive’ checks.

ruby wpscan.rb --url http://www.example.com

Do wordlist password brute force on enumerated users using 50 threads.

ruby wpscan.rb --url http://www.example.com --wordlist darkc0de.lst --threads 50

Do wordlist password brute force on the ‘admin’ username only.

ruby wpscan.rb --url http://www.example.com --wordlist darkc0de.lst --username admin

Enumerate instaled plugins.

ruby wpscan.rb --url http://www.example.com --enumerate p

Run all enumeration tools.

ruby wpscan.rb --url http://www.example.com --enumerate

About these ads
Categories: Tools
  1. bruno
    08/04/2013 at 1:53 am

    I think the admin of this web page is genuinely working hard for his web page,
    because here every data is quality based information.

  2. 08/03/2013 at 10:55 am

    Wow, that’s what I was searching for, what a stuff! existing here at this website, thanks admin of this site.

  3. 07/27/2013 at 3:54 am

    Hello There. I discovered your weblog the usage of msn.
    This is a very well written article. I’ll be sure to bookmark it and come back to read extra of your helpful info. Thank you for the post. I’ll certainly comeback.

  4. 07/25/2013 at 8:44 am

    Excellent blog here! Also your site loads up fast!
    What host are you using? Can I get your affiliate link
    to your host? I wish my website loaded up as quickly as yours lol

  5. 07/24/2013 at 12:44 pm

    WOW just what I was looking for. Came here
    by searching for antivirus software download

  6. 07/17/2013 at 4:19 am

    It will detect any spyware or possible malicious
    application. The Samsung Blu-ray RW supports both PC and Mac systems,
    as well as multimedia Television (if it has a USB input).
    In extreme cases the Java freeze-ups error requires full uninstall and re-install of the plugin.

  7. 07/09/2013 at 1:45 am

    Not only does Usher give his final contestant a standing ovation, but he
    adds plenty of cheering with the rest of the fans. The 25-year-old is bringing her reality show to the states.

    Overall I think the design of Windows Phone is far
    superior to i – OS and Android; the live tiles
    are ingenious, look great, and they’re also really useful.

  8. 07/05/2013 at 7:00 pm

    And fat is under the skin as the fatty layer between the muscles.
    Is there a saving for me of labor, energy or maintenance.
    The most common place that people ground the amp is by running
    a wire to one of the bolts that holds down the front seat.

  9. 07/03/2013 at 12:00 pm

    May I just say what a relief to find somebody that actually
    knows what they’re discussing over the internet. You certainly realize how to bring a problem to light and make it important. More and more people should check this out and understand this side of your story. I was surprised you aren’t more popular given that you surely have the gift.

  10. 08/31/2012 at 5:01 am

    hi i need your help. can you possible web server user admin password to findout root passwd ?
    Please how to your processes. pls reply me

  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Follow

Get every new post delivered to your Inbox.

%d bloggers like this: