Excellent work Ryan! Absolutely dig the tool.
Christian @xntrik Frichot On Fri, Nov 25, 2011 at 8:47 PM, Ryan Dewhurst <[email protected]>wrote: > WPScan is a vulnerability scanner which checks the security of > WordPress installations using a black box approach > I am pleased to announce, after 5 months of work, that WPScan version 1.1 > has been released! > > With 780 more lines of code the most notable changes are: > > Detection for 750 more plugins. > Detection for 107 new plugin vulnerabilities. > Detection for 447 possible timthumb file locations. > Advanced version fingerprinting implemented. > Full Path Disclosure (FPD) checks. > Auto updates. > Progress indicators. > Improved custom 404 checking. > Improved plugin detection. > Improved error_log checking. > Lots of bugs fixed. > Lots of small tweaks. > > A full list of changes can be found here: > http://code.google.com/p/wpscan/source/browse/trunk/CHANGELOG > > We have done away with file downloads and instead we’re using Subversion > (SVN) for distributing WPScan, you can checkout WPScan 1.1 by issuing the > following command: > > svn checkout http://wpscan.googlecode.com/svn/trunk/ ./wpscan-1.1 > > WPScan can also be found pre-installed in Backtrack5 R1 in the > ‘/pentest/web/wpscan’ directory and will soon be available in SamuraiWTF. > > Thanks to everyone who reported bugs or requested features. A special > thanks to Alip, @gbrindisi and michee08. > > If you find any pesky bugs or want to request a feature in version 1.1, > please do so here: > http://code.google.com/p/wpscan/ > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com >
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
