This article was published on June 17, 2011

WPScan scans your WordPress installation for security vulnerabilities


WPScan scans your WordPress installation for security vulnerabilities

There are a variety of security services out there for WordPress users, including Automattic’s own subscription based security and backup service, VaultPress.

But if you just want to scan your installation for security vulnerabilities and plug the holes yourself, WPScan may be the tool for you.

Released on ethicalhack3r, a blog by a British computer security student, WPScan is a Ruby script with a couple of dependencies, so make sure you follow the installation instructions on the blog if you’re not all that familiar with using Ruby scripts.

WPScan’s features include weak password cracking, username enumeration, plugin enumeration and a variety of other scans.

Get the TNW newsletter

Get the most important tech news in your inbox each week.

Also tagged with