Update reame CLI options
This commit is contained in:
ethicalhack3r
88
README.md
88
README.md
@@ -209,13 +209,10 @@ Apple Xcode, Command Line Tools and the libffi are needed (to be able to install
|
|||||||
|
|
||||||
#### WPSCAN ARGUMENTS
|
#### WPSCAN ARGUMENTS
|
||||||
|
|
||||||
--update Update the databases.
|
--update Update to the database to the latest version.
|
||||||
|
--url | -u <target url> The WordPress URL/domain to scan.
|
||||||
--url | -u <target url> The WordPress URL/domain to scan.
|
--force | -f Forces WPScan to not check if the remote site is running WordPress.
|
||||||
|
--enumerate | -e [option(s)] Enumeration.
|
||||||
--force | -f Forces WPScan to not check if the remote site is running WordPress.
|
|
||||||
|
|
||||||
--enumerate | -e [option(s)] Enumeration.
|
|
||||||
option :
|
option :
|
||||||
u usernames from id 1 to 10
|
u usernames from id 1 to 10
|
||||||
u[10-20] usernames from id 10 to 20 (you must write [] chars)
|
u[10-20] usernames from id 10 to 20 (you must write [] chars)
|
||||||
@@ -229,53 +226,36 @@ Apple Xcode, Command Line Tools and the libffi are needed (to be able to install
|
|||||||
Multiple values are allowed : "-e tt,p" will enumerate timthumbs and plugins
|
Multiple values are allowed : "-e tt,p" will enumerate timthumbs and plugins
|
||||||
If no option is supplied, the default is "vt,tt,u,vp"
|
If no option is supplied, the default is "vt,tt,u,vp"
|
||||||
|
|
||||||
--exclude-content-based "<regexp or string>" Used with the enumeration option, will exclude all occurrences based on the regexp or string supplied
|
--exclude-content-based "<regexp or string>"
|
||||||
You do not need to provide the regexp delimiters, but you must write the quotes (simple or double)
|
Used with the enumeration option, will exclude all occurrences based on the regexp or string supplied.
|
||||||
|
You do not need to provide the regexp delimiters, but you must write the quotes (simple or double).
|
||||||
--config-file | -c <config file> Use the specified config file, see the example.conf.json
|
--config-file | -c <config file> Use the specified config file, see the example.conf.json.
|
||||||
|
--user-agent | -a <User-Agent> Use the specified User-Agent.
|
||||||
--user-agent | -a <User-Agent> Use the specified User-Agent
|
--cookie <String> String to read cookies from.
|
||||||
|
--random-agent | -r Use a random User-Agent.
|
||||||
--random-agent | -r Use a random User-Agent
|
--follow-redirection If the target url has a redirection, it will be followed without asking if you wanted to do so or not
|
||||||
|
--batch Never ask for user input, use the default behaviour.
|
||||||
--follow-redirection If the target url has a redirection, it will be followed without asking if you wanted to do so or not
|
--no-color Do not use colors in the output.
|
||||||
|
--wp-content-dir <wp content dir> WPScan try to find the content directory (ie wp-content) by scanning the index page, however you can specified it.
|
||||||
--wp-content-dir <wp content dir> WPScan try to find the content directory (ie wp-content) by scanning the index page, however you can specified it. Subdirectories are allowed
|
Subdirectories are allowed.
|
||||||
|
--wp-plugins-dir <wp plugins dir> Same thing than --wp-content-dir but for the plugins directory.
|
||||||
--wp-plugins-dir <wp plugins dir> Same thing than --wp-content-dir but for the plugins directory. If not supplied, WPScan will use wp-content-dir/plugins. Subdirectories are allowed
|
If not supplied, WPScan will use wp-content-dir/plugins. Subdirectories are allowed
|
||||||
|
--proxy <[protocol://]host:port> Supply a proxy. HTTP, SOCKS4 SOCKS4A and SOCKS5 are supported.
|
||||||
--proxy <[protocol://]host:port> Supply a proxy (will override the one from conf/browser.conf.json).
|
If no protocol is given (format host:port), HTTP will be used.
|
||||||
HTTP, SOCKS4 SOCKS4A and SOCKS5 are supported. If no protocol is given (format host:port), HTTP will be used
|
--proxy-auth <username:password> Supply the proxy login credentials.
|
||||||
|
--basic-auth <username:password> Set the HTTP Basic authentication.
|
||||||
--proxy-auth <username:password> Supply the proxy login credentials.
|
--wordlist | -w <wordlist> Supply a wordlist for the password brute forcer.
|
||||||
|
--username | -U <username> Only brute force the supplied username.
|
||||||
--basic-auth <username:password> Set the HTTP Basic authentication.
|
--usernames <path-to-file> Only brute force the usernames from the file.
|
||||||
|
--threads | -t <number of threads> The number of threads to use when multi-threading requests.
|
||||||
--wordlist | -w <wordlist> Supply a wordlist for the password brute forcer.
|
--cache-ttl <cache-ttl> Typhoeus cache TTL.
|
||||||
|
--request-timeout <request-timeout> Request Timeout.
|
||||||
--threads | -t <number of threads> The number of threads to use when multi-threading requests.
|
--connect-timeout <connect-timeout> Connect Timeout.
|
||||||
|
--max-threads <max-threads> Maximum Threads.
|
||||||
--username | -U <username> Only brute force the supplied username.
|
--throttle <milliseconds> Milliseconds to wait before doing another web request. If used, the --threads should be set to 1.
|
||||||
|
--help | -h This help screen.
|
||||||
--usernames <path-to-file> Only brute force the usernames from the file.
|
--verbose | -v Verbose output.
|
||||||
|
--version Output the current version and exit.
|
||||||
--cache-ttl <cache-ttl> Typhoeus cache TTL.
|
|
||||||
|
|
||||||
--request-timeout <request-timeout> Request Timeout.
|
|
||||||
|
|
||||||
--connect-timeout <connect-timeout> Connect Timeout.
|
|
||||||
|
|
||||||
--max-threads <max-threads> Maximum Threads.
|
|
||||||
|
|
||||||
--help | -h This help screen.
|
|
||||||
|
|
||||||
--verbose | -v Verbose output.
|
|
||||||
|
|
||||||
--batch Never ask for user input, use the default behavior.
|
|
||||||
|
|
||||||
--no-color Do not use colors in the output.
|
|
||||||
|
|
||||||
--log Save STDOUT to log.txt
|
|
||||||
|
|
||||||
#### WPSCAN EXAMPLES
|
#### WPSCAN EXAMPLES
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user