garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,731 Commits 17 Branches 73 Tags
ea36c79c2675bb3dabe1a3b0fb330d16f73b8670
Commit Graph

115 Commits

Author SHA1 Message Date
erwanlr
c8c126d444 Rspec 3.0 support 2014-06-02 22:06:49 +02:00
erwanlr
8038e2e01a Ref #455 - Fails with a message if the target returns a 403 during the wordpress check 2014-04-15 17:02:22 +02:00
FireFart
aeefd3e873 rspecs 2014-03-22 16:08:21 +01:00
Peter
2e40a7377a Corrected spelling mistake 2014-01-05 22:46:22 +01:00
ethicalhack3r
a7d9927584 Added hosted wordpress detection. See issue #343. 2013-10-28 00:18:09 +01:00
Christian Mehlmauer
5ea911c9b3 Header names are case insensitive 
Move header checks to web_site
 2013-08-10 11:49:30 +02:00
Christian Mehlmauer
6c008015e9 parse robots.txt 2013-08-10 11:35:17 +02:00
ethicalhack3r
2a9bd99f97 Fix for xmlrpc false positive. Issue #260. 2013-08-09 12:54:10 +02:00
Christian Mehlmauer
bb35837ea1 output interesting http-headers 2013-07-19 14:14:13 +02:00
erwanlr
471ebb733c Add link to the WebMock issue about the range header not considerated 2013-04-18 11:44:20 +02:00
erwanlr
5a097d429d Code Factoring 2013-04-18 11:22:19 +02:00
erwanlr
788122c5d6 WebSite::page_hash Better comments detection 2013-04-16 16:42:37 +02:00
erwanlr
bb88a1105e Possible fix for #169 2013-04-16 14:14:20 +02:00
erwanlr
7db63bb3e0 BruteForcer moved in WpUser as a module 2013-04-12 21:52:33 +02:00
erwanlr
748b5d3166 WpTarget modules reworked 2013-04-08 18:22:06 +02:00
erwanlr
3ce42b641c License text removed from sources, see the LICENSE file 2013-04-05 14:06:31 +02:00
erwanlr
d016d33747 New enumeration system 2013-03-19 22:59:20 +01:00
erwanlr
5f7ca09e55 WpVersion code factoring 2013-03-11 15:59:38 +01:00
ethicalhack3r
9434db242b Fixed syntax error. 2013-03-10 23:54:07 +01:00
ethicalhack3r
97ec9a6aa7 Refactored #default_wp_content_dir_exists? spec. 2013-03-10 23:52:36 +01:00
ethicalhack3r
ed2eb44b38 Added default wp-content dir detection, see Issue #141. 2013-03-10 12:08:49 +01:00
erwanlr
b8ccfa23d9 Fixes #140 xml_rpc_url in the body 2013-03-05 13:49:47 +01:00
erwanlr
8bc8d7e7cd Fixes WebSite#xml_rpc_url bug (Thanks Patrick for the report) 2013-03-04 16:34:49 +01:00
erwanlr
79cad5cf55 Ref #53 Typhoeus > 0.4.2 support 2013-02-21 18:48:48 +01:00
erwanlr
12d4e38ab1 Fix #131 Bug with WpTarget#wordpress? 2013-02-20 15:18:37 +01:00
Christian Mehlmauer
eeb459ce67 moved to wpstools 2013-02-08 12:53:01 +01:00
Christian Mehlmauer
bc28750750 Wpscan statistics 2013-02-08 10:31:55 +01:00
Christian Mehlmauer
a07d55f1ab output total number of plugins and themes 2013-02-08 00:13:27 +01:00
Christian Mehlmauer
f72f3b7594 get theme version number from readme if not present in style.css 2013-02-05 19:42:22 +01:00
erwanlr
897546c352 Rspec case missing for WpTarget.wordpress? 2013-02-05 18:27:38 +01:00
erwanlr
99218528f7 WebSite is now a class instead of a module 2013-02-05 18:16:29 +01:00
Christian Mehlmauer
7f15753e4b username detection 2013-02-05 14:31:03 +01:00
Christian Mehlmauer
014048a8ac rspecs 2013-02-05 10:11:57 +01:00
Christian Mehlmauer
e5e99aee60 consequent output 2013-02-04 23:56:11 +01:00
erwanlr
0bf392edc2 Rubocopification (unless ... else => if ... else, encoding, Multilines in {} block) 2013-02-03 12:02:24 +01:00
Christian Mehlmauer
a4c0e44c47 detect robots.txt 2013-01-29 10:51:11 +01:00
Christian Mehlmauer
b121de8b2b rspecs 2013-01-28 23:36:18 +01:00
erwanlr
b919c12d2f spec/ rubocopied 2013-01-24 22:00:17 +01:00
Christian Mehlmauer
5d6ce70863 rspec tests 2013-01-19 21:22:11 +01:00
erwanlr
0b5d7ad147 Fix #112 Multiple redirections detection 2013-01-19 15:03:58 +01:00
Christian Mehlmauer
04fab49d44 rspec tests 2013-01-14 15:05:55 +01:00
Christian Mehlmauer
96d82405df Bugfix in Versiondetection. Without this Fix a very long string is detected as WPVersion and wpscan crashes on determing the vulns from XML because the string is used as xpath 2013-01-14 14:27:12 +01:00
ethicalhack3r
fb124f770c Changed the Copyright notice to include 2013. 2013-01-11 17:40:37 +01:00
erwanlr
91a38b6a11 Fix : Rspec bad URI error 2013-01-11 16:42:55 +01:00
ethicalhack3r
db2e127c4e Added the wordpress.org plugin URL. See issue #100. 2013-01-10 11:59:47 +01:00
erwanlr
0c555a70c0 Useless comment removed 2013-01-04 16:16:15 +01:00
erwanlr
42c68fe683 show_progression used in brute forcing 2013-01-04 15:30:35 +01:00
erwanlr
c0eadd22db show_progress_bar renamed to show_progression 2013-01-04 15:15:14 +01:00
erwanlr
a4ace91e68 Fix #96 Username detection from header location when a trailing slash is present 2013-01-01 15:30:01 +01:00
erwanlr
9b14a8d038 Fix #54 False positive when a plugin directory redirects to the homepage 2012-12-21 12:21:40 +01:00