Tool and Usage
Wordstress is a security scanner for WordPress installations. It uses a white-box approach in scanning, which makes it different than most other scanners.
Why this tool?
Most security scanners perform a black-box approach. This may result in false positives and time wasted. This is a shame for both the security researcher and the one who maintains the installation. Wordstress takes another approach by doing a white-box scan where it sees all data. So although you will need to have full access, it will result in less guesswork.
Usage and audience
Wordstress is commonly used for application security, vulnerability scanning, or web application analysis. Target users for this tool are developers, pentesters, security professionals, and system administrators.
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + The source code of this software is available
Supported operating systems
Wordstress is known to work on Linux.
Similar tools to Wordstress:
CMSmap is a security tool to perform reconnaissance on a web target. It helps with the detection of several popular content management systems (CMS).
Flunym0us is a security scanner for WordPress and Moodle installations. The tool tests the security of the installation by performing enumeration attempts.
Vane is a forked project of the now non-free popular WordPress vulnerability scanner WPScan.