← 返回命令列表

Linux command

wpscan 命令

网络

复制后可按需替换文件名、目录或参数。

常用示例

Scan WordPress site

wpscan --url [https://example.com]

Enumerate users

wpscan --url [https://example.com] -e u

Enumerate plugins

wpscan --url [https://example.com] -e vp

Enumerate themes

wpscan --url [https://example.com] -e vt

Full enumeration

wpscan --url [https://example.com] -e ap,at,u

Password brute force

wpscan --url [https://example.com] -U [admin] -P [passwords.txt]

Use API token

wpscan --url [https://example.com] --api-token [TOKEN]

Output to file

wpscan --url [https://example.com] -o [output.txt]

说明

wpscan is a WordPress security scanner. It identifies vulnerabilities, misconfigurations, and weak credentials. User enumeration finds valid usernames through various techniques. These can be used for targeted attacks. Plugin and theme enumeration identifies installed components. Vulnerable plugins are a major attack vector for WordPress. The vulnerability database requires an API token. Free tokens have limited requests; paid tokens provide more. Password brute forcing tests credentials. Rate limiting may apply; use responsibly. Detection modes balance stealth versus thoroughness. Aggressive mode may trigger security plugins.

参数

--url _URL_
Target URL.
-e _LIST_
Enumeration options.
-U _USER_
Username for brute force.
-P _FILE_
Password wordlist.
--api-token _TOKEN_
WPScan API token.
-o _FILE_
Output file.
-f _FORMAT_
Output format (cli, json, etc.).
--random-user-agent
Random user agent.
--wp-content-dir _DIR_
wp-content directory.
--detection-mode _MODE_
Detection mode (mixed, passive, aggressive).
--force
Don't check if target is WordPress.
-v
Verbose mode.

FAQ

What is the wpscan command used for?

wpscan is a WordPress security scanner. It identifies vulnerabilities, misconfigurations, and weak credentials. User enumeration finds valid usernames through various techniques. These can be used for targeted attacks. Plugin and theme enumeration identifies installed components. Vulnerable plugins are a major attack vector for WordPress. The vulnerability database requires an API token. Free tokens have limited requests; paid tokens provide more. Password brute forcing tests credentials. Rate limiting may apply; use responsibly. Detection modes balance stealth versus thoroughness. Aggressive mode may trigger security plugins.

How do I run a basic wpscan example?

Run `wpscan --url [https://example.com]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.

What does --url _URL_ do in wpscan?

Target URL.