Recent
WPScan 1.1 released
I am pleased to announce, after 5 months of work, that WPScan version 1.1 has been released!
With 780 more lines of code the most notable changes are:
Detection for 750 more plugins.
Detection for 107 new plugin vulnerabilities.
Detection for 447 possible timthumb file locations.
Advanced version fingerprinting implemented.
Full Path Disclosure (FPD) checks.
Auto updates.
Progress indicators.
Improved custom 404 checking.
Improved plugin detection.
Improved error_log checking.
Lots of bugs fixed.
Lots of small tweaks.
A full list of changes can be found here:
http://code.google.com/p/wpscan/source/browse/trunk/CHANGELOG
We have done away with file downloads and instead we’re using Subversion (SVN) for distributing WPScan, you can checkout WPScan 1.1 by issuing the following command:
svn checkout http://wpscan.googlecode.com/svn/trunk/ ./wpscan-1.1
WPScan can also be found pre-installed in Backtrack5 R1 in the ‘/pentest/web/wpscan’ directory and will soon be available in SamuraiWTF.
Thanks to everyone who reported bugs or requested features. A special thanks to Alip, @gbrindisi and michee08.
If you find any pesky bugs or want to request a feature in version 1.1, please do so here:
http://code.google.com/p/wpscan/
7 Responses to “WPScan 1.1 released”
michee08
Congratz and Your welcome!:)
WordPress Security Scanner/WPScan 1.1 released « Security List Network™
[...] MORE IN here WPScan – WordPress Security Scanner Copyright (C) 2011 Ryan Dewhurst AKA ethicalhack3r. Code [...]
Fabrizio
Nice product :)
Miguel Lopes
[...] http://www.ethicalhack3r.co.uk [...]
Web Hacking 2011 (Blog Attacks) | Villacorp
[...] http://www.h-online.com/security/news/item/New-project-scans-for-WordPress-holes-1261912.html http://www.ethicalhack3r.co.uk/security/wpscan-1-1-released/ Nueva y poderosa herramienta para identificar vulnerabilidades en forma remota. Útil para [...]
NNick
Nice Tool and Great site…
Ashish
Information about security tools and hacking tools http://www.securitytube-tools.net :D