ctome
/
tldr
mirror of https://github.com/CrimsonTome/tldr.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

wpscan: add page (#3961)

client-spec/clarity
Alex 2020-04-03 22:50:38 +02:00 committed by GitHub
parent d27b75844f
commit 94d411ae5b
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 36 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

36
pages/common/wpscan.md Normal file
View File

@ -0,0 +1,36 @@
# wpscan
> Wordpress vulnerability scanner.
> More information: <https://github.com/wpscanteam/wpscan>.
- Update the vulnerability database:
`wpscan --update`
- Scan a Wordpress website:
`wpscan --url {{url}}`
- Scan a Wordpress website, using random user agents and passive detection:
`wpscan --url {{url}} --stealthy`
- Scan a Wordpress website, checking for vulnerable plugins and specifying the path to the `wp-content` directory:
`wpscan --url {{url}} --enumerate {{vp}} --wp-content-dir {{remote/path/to/wp-content}}`
- Scan a Wordpress website through a proxy:
`wpscan --url {{url}} --proxy {{protocol://ip:port}} --proxy-auth {{username:password}}`
- Perform user identifiers enumeration on a Wordpress website:
`wpscan --url {{url}} --enumerate {{u}}`
- Execute a password guessing attack on a Wordpress website:
`wpscan --url {{url}} --usernames {{username|path/to/usernames.txt}} --passwords {{path/to/passwords.txt}} threads {{20}}`
- Scan a Wordpress website, collecting vulnerability data from the WPVulnDB (https://wpvulndb.com/):
`wpscan --url {{url}} --api-token {{token}}`