Description: In this video you will learn how to use WordPress Scanner tool effectively. (WPSCAN)
In this video we will run some generic scans on a fresh install. So we can see how it is working. Then we will see how to perform brute-force attack, and how it is works. This video is very detailed and Interesting. Enjoy.
WPscan :- WPScan is a vulnerability scanner which checks the security of WordPress installations using a black box approach.
Feature :-
• Username enumeration (from author querystring and location header)
• Weak password cracking (multithreaded)
• Version enumeration (from generator meta tag and from client side files)
• Vulnerability enumeration (based on version)
• Timbthumb file enumeration
• Plugin enumeration (2220 most popular by default)
• Plugin vulnerability enumeration (based on plugin name)
• Plugin enumeration list generation
• Other misc WordPress checks (theme name, dir listing, ...)
http://code.google.com/p/wpscan/
Source :- Hood3dRob1n
Tags: word-press , hacking , hack ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Great Tool, Good Demonstration. Thanks for posting :)
Yes, This tool is very good, Different - Different Plugins are Awesome.
If you want to use some specific Plugin choose it from here. http://w3af.sourceforge.net/plugin-descriptions.php.