search
githubEdit

Wpscan Wordpress Scanner

hashtag
Usage

hashtag
1) Updates wpscan database

wpscan --update

hashtag
2) All plugins enumeration

wpscan --url http://domain.local/wordpress --plugins-detection aggressive

hashtag
3) Theme enumeration

wpscan --url http://domain.local/wordpress --enumerate -t

hashtag
4) Plugin enumeration

wpscan --url http://domain.local/wordpress --enumerate ap

hashtag
5) User enumeration

wpscan --url http://domain.local/wordpress --enumerate u

hashtag
6) Password Attack

wp scan --url http://domain.local/wordpress --passwords LIST --usernames USER

hashtag
7) Vulnerable plugins enumeration

PreviousSSTImap Automated SSTI scanner and exploitation toolNextYsoserial Deserialization Payload Generator

Last updated