Edit

Scan vulnerabilities of WordPress

WordPressのスキャン (本体、プラグイン、テーマ)

非商用で使う場合は、WordPressとの連携を無料で使用できます。 But for commercial use, You have to send a E-Mail to the WPScan Team. For Details, see the NOTE:

あなたのソフトウェアが非商用かどうかわからない時や、商用で使用したいときのお問い合わせ

First, you need to register a user and get the API token from your profile page on wpscan.com. And then, check whether the wp command is installed on the scan target server. 以下はサンプルの設定です。

• config.toml

  [wpscan]
  token = "Token"
  detectInactive = false

  [servers.kusanagi]
    user = "root"
    host = "10.10.10.10"
    port = "22"

  [servers.kusanagi.wordpress]
    cmdPath = "/usr/local/bin/wp"
    osUser = "wordpress"
    docRoot = "/home/kusanagi/wp/DocumentRoot/"

• token: A token of wpscan.com
• detectInactive : Detect plugins or themes which are inactive state
• cmdPath : A path of wp on the wordpress server
• osUser : A OS user of wp on the wordpress server
• docRoot : A path of document root on the wordpress server

スキャン

WordPressをスキャンするには、以下のように実行してください。

$ vuls scan kusanagi

Vuls collects WordPress Core version, plugins and themes via wp-cli.

レポート

$ vuls report

Vuls detects vulnerabilities via accessing WPScan.com via HTTP.

• Slack

• TUI

• Full-Text

Tips

• If you have some virtual WordPress sites in a server.
• OSのパッケージは要らなくてWordPressだけのレポートが欲しいとき

# for server administrator
[servers.wordpress]
host = "wordpress"

# for WordPress site FOO
[servers.foo]
host = "wordpress"
scanModules = ["wordpress"]
[servers.foo.wordpress]
docRoot = "/home/foo/wordpress/"

# for WordPress site BAR
[servers.bar]
host = "wordpress"
scanModules = ["wordpress"]
[servers.bar.wordpress]
docRoot = "/home/bar/wordpress/"