¶ Fast Audit
https://github.com/chrispetrou/FastAudit
FastAudit is a simple wordpress enumeration tool and security auditor, able to detect possible security issues with even one web-request.
It is inspired by the amazing WPScan tool and is of course powered by the WPScan Vulnerability Database to identify possible plugin/theme/wpVersion-related vulnerabilities. It performs basic enumeration based on classic techniques and It's nice to use for a fast scan to enumerate the basics. What is special about this tool is that in order to identify possible vulnerabilities (using -ep option), it makes only one web-request to the application, so it doesn't slow it down in any way and doesn't mess with its functionality.
This tool is only for enumeration and not for exploitation - so it doesn't perform any kind of brute-force attack or any other attack in general. This tool can be used by developers and security engineers to scan their wordpress applications for possible vulberabilities (e.g. old plugins etc...) and fix them as soon as possible - that's all!
¶ Features
- based on the aboved results uses WPScan Vulnerability Database to search for potential vulnerabilities
- enumerates wp-version/theme/users/plugins
- utilizes haveibeenpwned service to search if a password (in sha1) has been used/breached before (useful for developers to test their passwords).
- utilizes shodan-API to search for additional vulnerabilities (shodan account required for this feature, may also give false positives sometimes)
¶ Category:
Attack/CMS
¶ Flag:
chmod +x _run/entrypoint__output_via_file.sh
¶ Facts:
Password is pwned
Username disclosure
Local File Inclusion (LFI)
Possible File Upload
Remote Code Execution (RCE)
SQL-injection
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF) vulnerability
Authentication Bypass detected
Possible Privilege Escalation
XML External Entity (XXE)
Backdoor detected
Possible Bypass vulnerability
Possible Denial of Service (DoS)
Full Path Disclosure (FPD)
Possible vulnerability of Multiple type
Possible PHP Object Injection
Possible Server-Side Request Forgery (SSRF)
Directory Traversal (Path Traversal)
Possible vulnerability of Unknown type
¶ Screenshots of results:
¶ Tags:
Aggressive, CMS, Crawling, CRLF, CVE, Directory Traversal, Enumerate, Exploit, Old, RCE, RFIM LFI, SQLI, Vulnerability identification, WordPress, XSS,
¶ DISCLAIMER:
This program is used for educational and ethical purposes only. I take no responsibility for any damages caused from using this program. By downloading and using this software, you agree that you take full responsibility for any damages and liability.