Wordpress Plugins Scanner it is a semi-automatic white box pentesting/crawler app for WP plugins using RIPS from OWASP that can help you to speed up your process of finding 0days in WP plugins. This tool can crawl plugins from Wordpress Directory and store them localy. After they are downloaded you can scan those plugins with OWASP RIPS and see possible security problems.
- Version : 1.0
- Website : Cyber Security Research Center from Romania
- Contact : contact [at] ccsir [dot] org
##Snapshot
##Features
- Automatic Crawling of plugins from Wordpress.org (Directory)
- Load plugins from your local plugins folder
- Scan all (white box pentesting) plugins using RIPS and show you an resume about what was found
- A proxy "WP Plugins Scanner to RIPS" that can show off you a detailed report
##Help
- No need. Just download these files and upload in an environment that supports PHP
- You can upgrade RIPS by rewriting rips/ directory
- Local storage for plugins is plugins/ directory
##License
Copyright (C) 2013 Cyber Security Research Center from Romania
This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 3 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program; if not, see http://www.gnu.org/licenses/.