HELLO v3!!!

spec/output/enumeration/config_backups/none_found.cli_no_colour

@@ -0,0 +1,3 @@
+
+[i] No Config Backups Found.
+

spec/output/enumeration/config_backups/none_found.json

@@ -0,0 +1,5 @@
+{
+  "config_backups": {
+
+  }
+}

spec/output/enumeration/db_exports/none_found.cli_no_colour

@@ -0,0 +1,3 @@
+
+[i] No DB Exports Found.
+

spec/output/enumeration/db_exports/none_found.json

@@ -0,0 +1,5 @@
+{
+  "db_exports": {
+
+  }
+}

spec/output/enumeration/medias/medias.cli_no_colour

@@ -0,0 +1,9 @@
+
+[i] Medias(s) Identified:
+
+[+] http://ex.lo/?attachment_id=1
+ | Detected By: Attachment Brute Forcing
+
+[+] http://ex.lo/?attachment_id=5
+ | Detected By: Attachment Brute Forcing
+

spec/output/enumeration/medias/medias.json

@@ -0,0 +1,30 @@
+{
+  "medias": {
+    "http://ex.lo/?attachment_id=1": {
+      "found_by": "Attachment Brute Forcing",
+      "confidence": 0,
+      "interesting_entries": [
+
+      ],
+      "confirmed_by": {
+
+      },
+      "vulnerabilities": [
+
+      ]
+    },
+    "http://ex.lo/?attachment_id=5": {
+      "found_by": "Attachment Brute Forcing",
+      "confidence": 0,
+      "interesting_entries": [
+
+      ],
+      "confirmed_by": {
+
+      },
+      "vulnerabilities": [
+
+      ]
+    }
+  }
+}

spec/output/enumeration/medias/none_found.cli_no_colour

@@ -0,0 +1,3 @@
+
+[i] No Medias Found.
+

spec/output/enumeration/medias/none_found.json

@@ -0,0 +1,5 @@
+{
+  "medias": {
+
+  }
+}

spec/output/enumeration/plugins/none_found.cli_no_colour

@@ -0,0 +1,3 @@
+
+[i] No plugins Found.
+

spec/output/enumeration/plugins/none_found.json

@@ -0,0 +1,5 @@
+{
+  "plugins": {
+
+  }
+}

spec/output/enumeration/themes/none_found.cli_no_colour

@@ -0,0 +1,3 @@
+
+[i] No themes Found.
+

spec/output/enumeration/themes/none_found.json

@@ -0,0 +1,5 @@
+{
+  "themes": {
+
+  }
+}

spec/output/enumeration/timthumbs/no_vulns.cli_no_colour

@@ -0,0 +1,15 @@
+
+[i] Timthumb(s) Identified:
+
+[+] http://ex.lo/tt.php
+ | Detected By: Known Locations
+ |
+ | Version: 2.8.14
+ | Detected By: Bad Request
+
+[+] http://ex.lo/tt2.php
+ | Detected By: Known Locations
+ |
+ | Version: 2.8.14
+ | Detected By: Bad Request
+

spec/output/enumeration/timthumbs/no_vulns.json

@@ -0,0 +1,58 @@
+{
+  "timthumbs": {
+    "http://ex.lo/tt.php": {
+      "found_by": "Known Locations",
+      "confidence": 0,
+      "interesting_entries": [
+
+      ],
+      "confirmed_by": {
+
+      },
+      "vulnerabilities": [
+
+      ],
+      "version": {
+        "number": "2.8.14",
+        "confidence": 0,
+        "found_by": "Bad Request",
+        "interesting_entries": [
+
+        ],
+        "confirmed_by": {
+
+        },
+        "vulnerabilities": [
+
+        ]
+      }
+    },
+    "http://ex.lo/tt2.php": {
+      "found_by": "Known Locations",
+      "confidence": 0,
+      "interesting_entries": [
+
+      ],
+      "confirmed_by": {
+
+      },
+      "vulnerabilities": [
+
+      ],
+      "version": {
+        "number": "2.8.14",
+        "confidence": 0,
+        "found_by": "Bad Request",
+        "interesting_entries": [
+
+        ],
+        "confirmed_by": {
+
+        },
+        "vulnerabilities": [
+
+        ]
+      }
+    }
+  }
+}

spec/output/enumeration/timthumbs/none_found.cli_no_colour

@@ -0,0 +1,3 @@
+
+[i] No Timthumbs Found.
+

spec/output/enumeration/timthumbs/none_found.json

@@ -0,0 +1,5 @@
+{
+  "timthumbs": {
+
+  }
+}

spec/output/enumeration/timthumbs/with_vulns.cli_no_colour

@@ -0,0 +1,27 @@
+
+[i] Timthumb(s) Identified:
+
+[+] http://ex.lo/tt.php
+ | Detected By: Known Locations
+ |
+ | [!] 2 vulnerabilities identified:
+ |
+ | [!] Title: Timthumb <= 2.8.13 WebShot Remote Code Execution
+ |     Fixed in: 2.8.14
+ |     References:
+ |      - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4663
+ |      - http://seclists.org/fulldisclosure/2014/Jun/117
+ |      - https://github.com/wpscanteam/wpscan/issues/519
+ |
+ | [!] Title: Timthumb <= 1.32 Remote Code Execution
+ |     Fixed in: 1.33
+ |     Reference: https://www.exploit-db.com/exploits/17602/
+ |
+ | The version could not be determined.
+
+[+] http://ex.lo/tt2.php
+ | Detected By: Known Locations
+ |
+ | Version: 2.8.14
+ | Detected By: Bad Request
+

spec/output/enumeration/timthumbs/with_vulns.json

@@ -0,0 +1,66 @@
+{
+  "timthumbs": {
+    "http://ex.lo/tt.php": {
+      "found_by": "Known Locations",
+      "confidence": 0,
+      "interesting_entries": [
+
+      ],
+      "confirmed_by": {
+
+      },
+      "vulnerabilities": [
+        {
+          "title": "Timthumb <= 2.8.13 WebShot Remote Code Execution",
+          "fixed_in": "2.8.14",
+          "references": {
+            "cve": [
+              "2014-4663"
+            ],
+            "url": [
+              "http://seclists.org/fulldisclosure/2014/Jun/117",
+              "https://github.com/wpscanteam/wpscan/issues/519"
+            ]
+          }
+        },
+        {
+          "title": "Timthumb <= 1.32 Remote Code Execution",
+          "fixed_in": "1.33",
+          "references": {
+            "exploitdb": [
+              "17602"
+            ]
+          }
+        }
+      ],
+      "version": null
+    },
+    "http://ex.lo/tt2.php": {
+      "found_by": "Known Locations",
+      "confidence": 0,
+      "interesting_entries": [
+
+      ],
+      "confirmed_by": {
+
+      },
+      "vulnerabilities": [
+
+      ],
+      "version": {
+        "number": "2.8.14",
+        "confidence": 0,
+        "found_by": "Bad Request",
+        "interesting_entries": [
+
+        ],
+        "confirmed_by": {
+
+        },
+        "vulnerabilities": [
+
+        ]
+      }
+    }
+  }
+}

spec/output/enumeration/users/none_found.cli_no_colour

@@ -0,0 +1,3 @@
+
+[i] No Users Found.
+

spec/output/enumeration/users/none_found.json

@@ -0,0 +1,5 @@
+{
+  "users": {
+
+  }
+}

spec/output/main_theme/no_verbose.cli_no_colour

@@ -0,0 +1,14 @@
+[+] WordPress theme in use: test
+ | Location: http://ex.lo/wp-content/themes/test/
+ | Readme: http://ex.lo/wp-content/themes/test/readme.txt
+ | Changelog: http://ex.lo/wp-content/themes/test/changelog.txt
+ | Style URL: http://ex.lo/wp-content/themes/test/style.css
+ | Style Name: Twenty Fifteen
+ | Style URI: https://wordpress.org/themes/twentyfifteen
+ | Description: Our 2015 default theme is clean, blog-focused....
+ | Author: the WordPress team
+ |
+ | Detected By: rspec
+ |
+ | The version could not be determined.
+

spec/output/main_theme/no_verbose.json

@@ -0,0 +1,39 @@
+{
+  "main_theme": {
+    "slug": "test",
+    "location": "http://ex.lo/wp-content/themes/test/",
+    "latest_version": null,
+    "last_updated": null,
+    "outdated": false,
+    "readme_url": "http://ex.lo/wp-content/themes/test/readme.txt",
+    "changelog_url": "http://ex.lo/wp-content/themes/test/changelog.txt",
+    "directory_listing": false,
+    "error_log_url": null,
+    "style_url": "http://ex.lo/wp-content/themes/test/style.css",
+    "style_name": "Twenty Fifteen",
+    "style_uri": "https://wordpress.org/themes/twentyfifteen",
+    "description": "Our 2015 default theme is clean, blog-focused.",
+    "author": "the WordPress team",
+    "author_uri": null,
+    "template": null,
+    "license": "GNU General Public License v2 or later",
+    "license_uri": "http://www.gnu.org/licenses/gpl-2.0.html",
+    "tags": "black, blue, gray, pink, purple, white, yellow.",
+    "text_domain": "twentyfifteen",
+    "found_by": "rspec",
+    "confidence": 0,
+    "interesting_entries": [
+
+    ],
+    "confirmed_by": {
+
+    },
+    "vulnerabilities": [
+
+    ],
+    "version": null,
+    "parents": [
+
+    ]
+  }
+}

spec/output/main_theme/not_found.cli_no_colour

@@ -0,0 +1,2 @@
+[i] The main theme could not be detected.
+

spec/output/main_theme/not_found.json

@@ -0,0 +1,3 @@
+{
+  "main_theme": null
+}

spec/output/main_theme/verbose.cli_no_colour

@@ -0,0 +1,19 @@
+[+] WordPress theme in use: test
+ | Location: http://ex.lo/wp-content/themes/test/
+ | Readme: http://ex.lo/wp-content/themes/test/readme.txt
+ | Changelog: http://ex.lo/wp-content/themes/test/changelog.txt
+ | Style URL: http://ex.lo/wp-content/themes/test/style.css
+ | Style Name: Twenty Fifteen
+ | Style URI: https://wordpress.org/themes/twentyfifteen
+ | Description: Our 2015 default theme is clean, blog-focused.
+ | Author: the WordPress team
+ | License: GNU General Public License v2 or later
+ | License URI: http://www.gnu.org/licenses/gpl-2.0.html
+ | Tags: black, blue, gray, pink, purple, white, yellow.
+ | Text Domain: twentyfifteen
+ |
+ | Detected By: rspec
+ |
+ | Version: 3.2 (0% confidence)
+ | Detected By: style
+

spec/output/main_theme/verbose.json

@@ -0,0 +1,52 @@
+{
+  "main_theme": {
+    "slug": "test",
+    "location": "http://ex.lo/wp-content/themes/test/",
+    "latest_version": null,
+    "last_updated": null,
+    "outdated": false,
+    "readme_url": "http://ex.lo/wp-content/themes/test/readme.txt",
+    "changelog_url": "http://ex.lo/wp-content/themes/test/changelog.txt",
+    "directory_listing": false,
+    "error_log_url": null,
+    "style_url": "http://ex.lo/wp-content/themes/test/style.css",
+    "style_name": "Twenty Fifteen",
+    "style_uri": "https://wordpress.org/themes/twentyfifteen",
+    "description": "Our 2015 default theme is clean, blog-focused.",
+    "author": "the WordPress team",
+    "author_uri": null,
+    "template": null,
+    "license": "GNU General Public License v2 or later",
+    "license_uri": "http://www.gnu.org/licenses/gpl-2.0.html",
+    "tags": "black, blue, gray, pink, purple, white, yellow.",
+    "text_domain": "twentyfifteen",
+    "found_by": "rspec",
+    "confidence": 0,
+    "interesting_entries": [
+
+    ],
+    "confirmed_by": {
+
+    },
+    "vulnerabilities": [
+
+    ],
+    "version": {
+      "number": "3.2",
+      "confidence": 0,
+      "found_by": "style",
+      "interesting_entries": [
+
+      ],
+      "confirmed_by": {
+
+      },
+      "vulnerabilities": [
+
+      ]
+    },
+    "parents": [
+
+    ]
+  }
+}

spec/output/main_theme/vulnerable.cli_no_colour

@@ -0,0 +1,26 @@
+[+] WordPress theme in use: dignitas-themes
+ | Location: http://ex.lo/wp-content/themes/dignitas-themes/
+ | Readme: http://ex.lo/wp-content/themes/dignitas-themes/readme.txt
+ | Changelog: http://ex.lo/wp-content/themes/dignitas-themes/changelog.txt
+ | Style URL: http://ex.lo/wp-content/themes/dignitas-themes/style.css
+ | Style Name: Twenty Fifteen
+ | Style URI: https://wordpress.org/themes/twentyfifteen
+ | Description: Our 2015 default theme is clean, blog-focused.
+ | Author: the WordPress team
+ | License: GNU General Public License v2 or later
+ | License URI: http://www.gnu.org/licenses/gpl-2.0.html
+ | Tags: black, blue, gray, pink, purple, white, yellow.
+ | Text Domain: twentyfifteen
+ |
+ | Detected By: rspec
+ |
+ | [!] 1 vulnerability identified:
+ |
+ | [!] Title: Dignitas 1.1.9 - Privilage Escalation
+ |     References:
+ |      - https://wpvulndb.com/vulnerabilities/7825
+ |      - http://research.evex.pw/?vuln=6
+ |      - http://packetstormsecurity.com/files/130652/
+ |
+ | The version could not be determined.
+

spec/output/main_theme/vulnerable.json

@@ -0,0 +1,51 @@
+{
+  "main_theme": {
+    "slug": "dignitas-themes",
+    "location": "http://ex.lo/wp-content/themes/dignitas-themes/",
+    "latest_version": null,
+    "last_updated": null,
+    "outdated": false,
+    "readme_url": "http://ex.lo/wp-content/themes/dignitas-themes/readme.txt",
+    "changelog_url": "http://ex.lo/wp-content/themes/dignitas-themes/changelog.txt",
+    "directory_listing": false,
+    "error_log_url": null,
+    "style_url": "http://ex.lo/wp-content/themes/dignitas-themes/style.css",
+    "style_name": "Twenty Fifteen",
+    "style_uri": "https://wordpress.org/themes/twentyfifteen",
+    "description": "Our 2015 default theme is clean, blog-focused.",
+    "author": "the WordPress team",
+    "author_uri": null,
+    "template": null,
+    "license": "GNU General Public License v2 or later",
+    "license_uri": "http://www.gnu.org/licenses/gpl-2.0.html",
+    "tags": "black, blue, gray, pink, purple, white, yellow.",
+    "text_domain": "twentyfifteen",
+    "found_by": "rspec",
+    "confidence": 0,
+    "interesting_entries": [
+
+    ],
+    "confirmed_by": {
+
+    },
+    "vulnerabilities": [
+      {
+        "title": "Dignitas 1.1.9 - Privilage Escalation",
+        "fixed_in": null,
+        "references": {
+          "url": [
+            "http://research.evex.pw/?vuln=6",
+            "http://packetstormsecurity.com/files/130652/"
+          ],
+          "wpvulndb": [
+            "7825"
+          ]
+        }
+      }
+    ],
+    "version": null,
+    "parents": [
+
+    ]
+  }
+}

spec/output/wp_version/confirmed_multiples.cli_no_colour

@@ -0,0 +1,9 @@
+[+] WordPress version 4.0 identified.
+ | Detected By: rspec
+ | Confirmed By:
+ |  Confirmed 1
+ |   - IE1
+ |  Confirmed 2
+ |   - IE1
+ |   - IE2
+

spec/output/wp_version/confirmed_multiples.json

@@ -0,0 +1,28 @@
+{
+  "version": {
+    "number": "4.0",
+    "found_by": "rspec",
+    "confidence": 0,
+    "interesting_entries": [
+
+    ],
+    "confirmed_by": {
+      "Confirmed 1": {
+        "confidence": 0,
+        "interesting_entries": [
+          "IE1"
+        ]
+      },
+      "Confirmed 2": {
+        "confidence": 0,
+        "interesting_entries": [
+          "IE1",
+          "IE2"
+        ]
+      }
+    },
+    "vulnerabilities": [
+
+    ]
+  }
+}

spec/output/wp_version/confirmed_one.cli_no_colour

@@ -0,0 +1,5 @@
+[+] WordPress version 4.0 identified.
+ | Detected By: rspec
+ | Confirmed By: Confirmed 1
+ |  - IE1
+

spec/output/wp_version/confirmed_one.json

@@ -0,0 +1,21 @@
+{
+  "version": {
+    "number": "4.0",
+    "found_by": "rspec",
+    "confidence": 0,
+    "interesting_entries": [
+
+    ],
+    "confirmed_by": {
+      "Confirmed 1": {
+        "confidence": 0,
+        "interesting_entries": [
+          "IE1"
+        ]
+      }
+    },
+    "vulnerabilities": [
+
+    ]
+  }
+}

spec/output/wp_version/not_confirmed_entries.cli_no_colour

@@ -0,0 +1,5 @@
+[+] WordPress version 4.0 identified.
+ | Detected By: rspec
+ |  - IE1
+ |  - IE2
+

spec/output/wp_version/not_confirmed_entries.json

@@ -0,0 +1,17 @@
+{
+  "version": {
+    "number": "4.0",
+    "found_by": "rspec",
+    "confidence": 0,
+    "interesting_entries": [
+      "IE1",
+      "IE2"
+    ],
+    "confirmed_by": {
+
+    },
+    "vulnerabilities": [
+
+    ]
+  }
+}

spec/output/wp_version/not_confirmed_no_entries.cli_no_colour

@@ -0,0 +1,3 @@
+[+] WordPress version 4.0 identified.
+ | Detected By: rspec
+

spec/output/wp_version/not_confirmed_no_entries.json

@@ -0,0 +1,16 @@
+{
+  "version": {
+    "number": "4.0",
+    "found_by": "rspec",
+    "confidence": 0,
+    "interesting_entries": [
+
+    ],
+    "confirmed_by": {
+
+    },
+    "vulnerabilities": [
+
+    ]
+  }
+}

spec/output/wp_version/not_found.cli_no_colour

@@ -0,0 +1,2 @@
+[i] The WordPress version could not be detected.
+

spec/output/wp_version/not_found.json

@@ -0,0 +1,3 @@
+{
+  "version": null
+}

spec/output/wp_version/with_vulns.cli_no_colour

@@ -0,0 +1,17 @@
+[+] WordPress version 3.8.1 identified.
+ | Detected By: rspec
+ |
+ | [!] 2 vulnerabilities identified:
+ |
+ | [!] Title: WP 3.8.1 - Vuln 1
+ |     Reference: https://wpvulndb.com/vulnerabilities/1
+ |
+ | [!] Title: WP 3.8.1 - Vuln 2
+ |     Fixed in: 3.8.2
+ |     References:
+ |      - https://wpvulndb.com/vulnerabilities/2
+ |      - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0166
+ |      - http://osvdb.org/show/osvdb/10
+ |      - url-2
+ |      - url-3
+

spec/output/wp_version/with_vulns.json

@@ -0,0 +1,43 @@
+{
+  "version": {
+    "number": "3.8.1",
+    "found_by": "rspec",
+    "confidence": 0,
+    "interesting_entries": [
+
+    ],
+    "confirmed_by": {
+
+    },
+    "vulnerabilities": [
+      {
+        "title": "WP 3.8.1 - Vuln 1",
+        "fixed_in": null,
+        "references": {
+          "wpvulndb": [
+            "1"
+          ]
+        }
+      },
+      {
+        "title": "WP 3.8.1 - Vuln 2",
+        "fixed_in": "3.8.2",
+        "references": {
+          "cve": [
+            "2014-0166"
+          ],
+          "osvdb": [
+            "10"
+          ],
+          "url": [
+            "url-2",
+            "url-3"
+          ],
+          "wpvulndb": [
+            "2"
+          ]
+        }
+      }
+    ]
+  }
+}