WPScan is a black box WordPress vulnerability scanner that can be used to scan remote WordPress installations to find security issues.
- Introduction
- Prerequisites
- Setting up a local Wordpress website in Windows
- Performing wpscan commands on Kali Linux
1. Basic Scan
2. Enumerating Usernames
3. Enumerating Plugins
4. Enumerating Themes
5. Enumerating Timthumbs
6. Brute Forcing Passwords
. - Commands List
Full Article : WPScan.pdf
No comments:
Post a Comment