Droopescan
Posted: Wed Mar 13, 2019 6:45 am
Droopescan
A plugin-based scanner that aids security researchers in identifying issues with several CMS.
Usage of droopescan for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program. Please note that while droopescan outputs the most CMS likely version installed on the remote host, any correlation between version numbers and vulnerabilities must be done manually by the user.
CMS supported are:
- SilverStripe.
- Wordpress.
Partial functionality for:
- Joomla (version enumeration and interesting URLs only).
- Moodle (plugin & theme very limited, watch out)
- Drupal (plugin discovery partial on new installations of Drupal, patches encouraged).
Download : https://github.com/droope/droopescan
A plugin-based scanner that aids security researchers in identifying issues with several CMS.
Usage of droopescan for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program. Please note that while droopescan outputs the most CMS likely version installed on the remote host, any correlation between version numbers and vulnerabilities must be done manually by the user.
CMS supported are:
- SilverStripe.
- Wordpress.
Partial functionality for:
- Joomla (version enumeration and interesting URLs only).
- Moodle (plugin & theme very limited, watch out)
- Drupal (plugin discovery partial on new installations of Drupal, patches encouraged).
Download : https://github.com/droope/droopescan