EN
ENNA

WPScan

Vulnerability Scanning · Ruby

WPScan is a WordPress security scanner that identifies vulnerabilities by enumerating plugins, themes, and users. It checks for known vulnerabilities in the WordPress core and its components using a regularly updated database. Written in Ruby, WPScan is widely used by security professionals to assess the security posture of WordPress installations and is an essential tool for anyone managing or auditing WordPress sites.

9.5kstars
1.3kforks
72issues
Updated 1mo ago
View on GitHubOfficial Website

Installation

$ gem install wpscan

Tags

wordpressplugin-enumcvecmshacking-toolscanscannersecuritysecurity-scannerwpscanwpvulndb

Details

Category
Vulnerability Scanning
Language
Ruby
Platforms
🐧linux🍎macos

Links

GitHub Repository

github.com/wpscanteam/wpscan

Official Website

wpscan.com

Releases

github.com/wpscanteam/wpscan/releases

Issues

github.com/wpscanteam/wpscan/issues

Sponsored

Your ad here

Reach security professionals and developers — ads@en-na.com

More in Vulnerability Scanning

Nuclei

Go

Fast vulnerability scanner driven by YAML templates. Thousands of community-contributed detection templates.

template-basedcvemisconfig

sqlmap

Python

Automatic SQL injection and database takeover tool. Detects and exploits SQL injection flaws.

sql-injectiondatabaseautomated

OpenVAS

C

Full-featured vulnerability scanner. 50,000+ NVTs, credentialed scanning, compliance checks.

enterprisenvtcompliance

XSStrike

Python

Advanced XSS detection suite. Fuzzing engine, context analysis, and WAF detection/bypass capabilities.

xsswaf-bypassfuzzing

Commix

Python

Automated OS command injection exploitation tool. Tests web apps for command injection vulnerabilities.

command-injectionautomatedweb-app

testssl.sh

Shell

Command-line tool for checking TLS/SSL ciphers, protocols, and cryptographic flaws on any port.

tlssslcipher-check