plecost : tool for Wordpress finger printer

[begood]

Wordpress finger printer tool, plecost search and retrieve information about the plugins versions installed in Wordpress systems. It can analyze a single URL or perform an analysis based on the results indexed by Google. Additionally displays CVE code associated with each plugin.

Plecost retrieves the information contained on Web sites supported by Wordpress, and also allows a search on the results indexed by Google.

We can also call it a word press vulnerability scanner

If we are about to perform penetration testing on many webservers and we know there are many web application running on wordpress Plecost will do the rest of the work give us the CVE no. and we and try to exploit.

How to use

./plecost-0.2.2-7-beta.py [options] [ URL | [-l num] -G]rn

sample

plecost -R plugins.txt -n 5

plecost -i plugin_list.txt -s 12 -M 30 -t 20 -o results.txt www.example1234.com

plecost -i plugin_list.txt -s 12 -M 30 -o results.txt www.example1234.com ( Search plugins with sleep time between 12 and 30 seconds for www.example1234.com )

Operating system supported

It is perl script so only dependency is perl modules should be installed.

download plecost