garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,147 Commits 17 Branches 73 Tags
fffcd61cc4a674880fd0b1dfcf421b225d0df54b
Commit Graph

54 Commits

Author SHA1 Message Date
ethicalhack3r
e3647092b0 Small typo in comment 2013-11-13 12:57:13 +01:00
ethicalhack3r
a7d9927584 Added hosted wordpress detection. See issue #343. 2013-10-28 00:18:09 +01:00
Christian Mehlmauer
5ea911c9b3 Header names are case insensitive 
Move header checks to web_site
 2013-08-10 11:49:30 +02:00
ethicalhack3r
2a9bd99f97 Fix for xmlrpc false positive. Issue #260. 2013-08-09 12:54:10 +02:00
Christian Mehlmauer
bb35837ea1 output interesting http-headers 2013-07-19 14:14:13 +02:00
erwanlr
5a097d429d Code Factoring 2013-04-18 11:22:19 +02:00
erwanlr
7db63bb3e0 BruteForcer moved in WpUser as a module 2013-04-12 21:52:33 +02:00
erwanlr
3525fb87e2 Browser::Actions (no specs) 2013-04-09 17:43:15 +02:00
erwanlr
748b5d3166 WpTarget modules reworked 2013-04-08 18:22:06 +02:00
erwanlr
3ce42b641c License text removed from sources, see the LICENSE file 2013-04-05 14:06:31 +02:00
erwanlr
68876bffb9 WpItems, WpPlugins, WpThemes specs 2013-03-29 22:27:43 +01:00
erwanlr
565bfceb49 WpVersion::Findable specs 2013-03-28 20:48:19 +01:00
erwanlr
d016d33747 New enumeration system 2013-03-19 22:59:20 +01:00
ethicalhack3r
ed2eb44b38 Added default wp-content dir detection, see Issue #141. 2013-03-10 12:08:49 +01:00
erwanlr
12d4e38ab1 Fix #131 Bug with WpTarget#wordpress? 2013-02-20 15:18:37 +01:00
erwanlr
e919474424 Code factoring 2013-02-20 14:45:04 +01:00
erwanlr
99218528f7 WebSite is now a class instead of a module 2013-02-05 18:16:29 +01:00
ethicalhack3r
44be0f5c21 Added 400 status to valid_response_codes. See #124. 2013-02-02 12:32:10 +01:00
erwanlr
3094d31633 lib/wpscan rubocopied 2013-01-24 18:23:54 +01:00
ethicalhack3r
fb124f770c Changed the Copyright notice to include 2013. 2013-01-11 17:40:37 +01:00
erwanlr
b5390be6b5 WpTarget.error_404_hash moved to WebSite module 2012-12-20 16:22:04 +01:00
erwanlr
2a782e9680 Basic auth 2012-12-12 17:05:06 +01:00
erwanlr
a7df9feabf Fix #77 facebook.com detected as a custom wp-content directory 2012-12-06 21:01:14 -06:00
Erwan
d438f37f57 Warnings from URI::escape (obsolete since ruby 1.9.2) and some instance variables not initialized fixed 2012-10-23 16:36:57 +02:00
ethicalhack3r
50436a83b5 WpTarget.wp_content_dir regex was not matching if path was '/'. Removed path from first regex. 2012-10-21 02:04:16 +02:00
Christian Mehlmauer
8df37a425d fix registration detection 
rspec tests
 2012-09-24 22:36:22 +02:00
Christian Mehlmauer
2e4a622cec -) Check if userregistration is enabled 
-) Check if blog is a multisite
 2012-09-24 20:46:26 +02:00
Christian Mehlmauer
fe1191a51e bugfixing and rspec tests 2012-09-24 18:07:22 +02:00
Christian Mehlmauer
7056d4ecd7 added link 2012-09-24 15:20:40 +02:00
Christian Mehlmauer
b4655e7d5a locate searchreplacedb2.php. this file reads database credentials 2012-09-24 14:39:05 +02:00
Christian Mehlmauer
c0c14faad1 check if plugin directory exists and warn the user 2012-09-23 22:55:19 +02:00
Christian Mehlmauer
a15028793e -) custom plugins directory (outside of wp-content) 
-) feedback from ewanlr
-) Regex fix for version detection from readme.txt due to false positives (tag-cloud-widget plugin)
 2012-09-23 21:50:41 +02:00
Christian Mehlmauer
9b6a2805d7 custom plugins directory 2012-09-22 23:50:14 +02:00
Christian Mehlmauer
ef72568688 formats 2012-09-22 16:19:21 +02:00
Christian Mehlmauer
ae96d93cee -) Code formatting 
-) rspec tests
 2012-09-22 15:44:41 +02:00
Christian Mehlmauer
48b0e88c95 regex escaping when using variables 2012-09-20 22:26:34 +02:00
Christian Mehlmauer
2c4069921b wp-content directory detection 2012-09-20 17:26:42 +02:00
Christian Mehlmauer
7a1ebb1942 bugfixing 2012-09-20 17:08:11 +02:00
Christian Mehlmauer
2a46dc3f40 -) more rspec tests 
-) Bugfixing
 2012-09-19 21:47:34 +02:00
Christian Mehlmauer
1e113f7fc5 Readded missing files 2012-09-18 17:30:50 +02:00
Christian Mehlmauer
b2dc269382 -) Removed unused file 
-) Added dummy files for new tests
 2012-09-17 22:59:49 +02:00
Christian Mehlmauer
fc23265f11 advanced fingerprinting fix 2012-09-16 23:50:28 +02:00
Christian Mehlmauer
0eaef9cd69 -) Bugfixing 
-) Added HTTP 500 Status code, since this means there is a file and php encountered an error on execution
 2012-09-15 23:37:15 +02:00
Christian Mehlmauer
81d40e58f6 Command line options and bugfixing 2012-09-15 21:33:18 +02:00
Christian Mehlmauer
8bc9f47cc7 First commit for more generic enumerating and scanning 2012-09-15 20:30:06 +02:00
Christian Mehlmauer
1b3c7d3b95 Update license for rdoc generation 2012-09-15 08:10:55 +02:00
Erwan
07a60071bd Detection of the wp-content directory improved 2012-09-12 17:11:21 +02:00
Erwan
773ed7a2d1 Fix #15 2012-09-04 13:56:22 +02:00
Erwan
eb10741912 Fix #10 
Improvement is also applied to the error_log check
 2012-09-02 14:01:12 +02:00
Erwan
336473d912 Useless code removed 
Options given to the Browser initializator improved
 2012-08-30 18:01:12 +02:00