WordPress専用脆弱性スキャナー
数々の脆弱性が報告されるWordPressに、ついに専用脆弱性スキャナーが登場。w
以下のような機能があるみたいです。試す時間がなくて残念。
- Username enumeration (from author querystring and location header)
- Weak password cracking (multithreaded)
- Version enumeration (from generator meta tag)
- Vulnerability enumeration (based on version)
- Plugin enumeration (2220 most popular by default)
- Plugin vulnerability enumeration (based on version) (todo)
- Plugin enumeration list generation
- Other misc WordPress checks (theme name, dir listing, ...)