Update wpscan.rb
This commit is contained in:
Peter van der Laan
18
wpscan.rb
18
wpscan.rb
@@ -25,7 +25,7 @@ def main
|
|||||||
end
|
end
|
||||||
|
|
||||||
if wpscan_options.version
|
if wpscan_options.version
|
||||||
puts "Current version is #{version}"
|
puts "Current version: #{version}"
|
||||||
exit(0)
|
exit(0)
|
||||||
end
|
end
|
||||||
|
|
||||||
@@ -65,7 +65,7 @@ def main
|
|||||||
puts "Following redirection #{redirection}"
|
puts "Following redirection #{redirection}"
|
||||||
puts
|
puts
|
||||||
else
|
else
|
||||||
puts "The remote host tried to redirect us to #{redirection}"
|
puts "The remote host tried to redirect us to: #{redirection}"
|
||||||
print 'Do you want follow the redirection ? [y/n] '
|
print 'Do you want follow the redirection ? [y/n] '
|
||||||
end
|
end
|
||||||
|
|
||||||
@@ -110,7 +110,7 @@ def main
|
|||||||
puts
|
puts
|
||||||
|
|
||||||
if wp_target.has_robots?
|
if wp_target.has_robots?
|
||||||
puts green('[+]') + " robots.txt available under '#{wp_target.robots_url}'"
|
puts green('[+]') + " robots.txt available under: '#{wp_target.robots_url}'"
|
||||||
|
|
||||||
wp_target.parse_robots_txt.each do |dir|
|
wp_target.parse_robots_txt.each do |dir|
|
||||||
puts "#{green('[+]')} Interesting entry from robots.txt: #{dir}"
|
puts "#{green('[+]')} Interesting entry from robots.txt: #{dir}"
|
||||||
@@ -122,7 +122,7 @@ def main
|
|||||||
end
|
end
|
||||||
|
|
||||||
if wp_target.has_full_path_disclosure?
|
if wp_target.has_full_path_disclosure?
|
||||||
puts red('[!]') + " Full Path Disclosure (FPD) in '#{wp_target.full_path_disclosure_url}'"
|
puts red('[!]') + " Full Path Disclosure (FPD) in: '#{wp_target.full_path_disclosure_url}'"
|
||||||
end
|
end
|
||||||
|
|
||||||
if wp_target.has_debug_log?
|
if wp_target.has_debug_log?
|
||||||
@@ -130,11 +130,11 @@ def main
|
|||||||
end
|
end
|
||||||
|
|
||||||
wp_target.config_backup.each do |file_url|
|
wp_target.config_backup.each do |file_url|
|
||||||
puts red("[!] A wp-config.php backup file has been found '#{file_url}'")
|
puts red("[!] A wp-config.php backup file has been found in: '#{file_url}'")
|
||||||
end
|
end
|
||||||
|
|
||||||
if wp_target.search_replace_db_2_exists?
|
if wp_target.search_replace_db_2_exists?
|
||||||
puts red("[!] searchreplacedb2.php has been found '#{wp_target.search_replace_db_2_url}'")
|
puts red("[!] searchreplacedb2.php has been found in: '#{wp_target.search_replace_db_2_url}'")
|
||||||
end
|
end
|
||||||
|
|
||||||
wp_target.interesting_headers.each do |header|
|
wp_target.interesting_headers.each do |header|
|
||||||
@@ -158,7 +158,7 @@ def main
|
|||||||
end
|
end
|
||||||
|
|
||||||
if wp_target.has_xml_rpc?
|
if wp_target.has_xml_rpc?
|
||||||
puts green('[+]') + " XML-RPC Interface available under #{wp_target.xml_rpc_url}"
|
puts green('[+]') + " XML-RPC Interface available under: #{wp_target.xml_rpc_url}"
|
||||||
end
|
end
|
||||||
|
|
||||||
if wp_target.has_malwares?
|
if wp_target.has_malwares?
|
||||||
@@ -184,7 +184,7 @@ def main
|
|||||||
if wp_theme = wp_target.theme
|
if wp_theme = wp_target.theme
|
||||||
puts
|
puts
|
||||||
# Theme version is handled in #to_s
|
# Theme version is handled in #to_s
|
||||||
puts green('[+]') + " The WordPress theme in use: #{wp_theme}"
|
puts green('[+]') + " WordPress theme in use: #{wp_theme}"
|
||||||
wp_theme.output
|
wp_theme.output
|
||||||
end
|
end
|
||||||
|
|
||||||
@@ -194,7 +194,7 @@ def main
|
|||||||
|
|
||||||
wp_plugins = WpPlugins.passive_detection(wp_target)
|
wp_plugins = WpPlugins.passive_detection(wp_target)
|
||||||
if !wp_plugins.empty?
|
if !wp_plugins.empty?
|
||||||
puts "#{wp_plugins.size} plugins found :"
|
puts " | #{wp_plugins.size} plugins found:"
|
||||||
|
|
||||||
wp_plugins.output
|
wp_plugins.output
|
||||||
else
|
else
|
||||||
|
|||||||
Reference in New Issue
Block a user