Jump to content
Andrei

WP Plugins Scanner - o unealta cu care poti gasi mai rapid 0days in pluginuri WP

By Andrei, in Programare

Recommended Posts

Andrei Rookie

Andrei

Posted
Posted

Am creat o mica aplicatie pentru a descoperi vulnerabilitati in pluginuri de Wordpress mai usor.

Care e ideea?

1. Un crawler ce descarca local orice plugin (sau mai multe) de pe site-ul wordpress.org.

2. Un rezumat al unui scanning de tip white box pentest.

3. Un mic hook la RIPS pentru a oferi rezultate detaliate si un audit al codului sursa foarte misto aranjat.

POC:

687474703a2f2f63637369722e726f2f66696c65732f736e617073686f745f77705f706c7567696e735f7363616e6e65725f312e302e706e67

Download & Tech Details:

https://github.com/CCSIR/WP-Plugins-Scanner

Original About:

Wordpress Plugins Scanner it is a semi-automatic white box pentesting/crawler app for WP plugins using RIPS from OWASP that can help you to speed up your process of finding 0days in WP plugins. This tool can crawl plugins from Wordpress Directory and store them localy. After they are downloaded you can scan those plugins with OWASP RIPS and see possible security problems.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...