lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <CAHw3cgRJystOzEUKy7vVJt_iV3JtEaEwvQZtRGC1DLxKKLYbzg@mail.gmail.com>
Date: Fri, 25 Nov 2011 12:47:59 +0000
From: Ryan Dewhurst <ryandewhurst@...il.com>
To: "Webappsec ((((E-mail))))" <webappsec@...urityfocus.com>
Subject: WPScan 1.1 released

WPScan is a vulnerability scanner which checks the security of
WordPress installations using a black box approach
I am pleased to announce, after 5 months of work, that WPScan version 1.1
has been released!

With 780 more lines of code the most notable changes are:

Detection for 750 more plugins.
Detection for 107 new plugin vulnerabilities.
Detection for 447 possible timthumb file locations.
Advanced version fingerprinting implemented.
Full Path Disclosure (FPD) checks.
Auto updates.
Progress indicators.
Improved custom 404 checking.
Improved plugin detection.
Improved error_log checking.
Lots of bugs fixed.
Lots of small tweaks.

A full list of changes can be found here:
http://code.google.com/p/wpscan/source/browse/trunk/CHANGELOG

We have done away with file downloads and instead we’re using Subversion
(SVN) for distributing WPScan, you can checkout WPScan 1.1 by issuing the
following command:

svn checkout http://wpscan.googlecode.com/svn/trunk/ ./wpscan-1.1

WPScan can also be found pre-installed in Backtrack5 R1 in the
‘/pentest/web/wpscan’ directory and will soon be available in SamuraiWTF.

Thanks to everyone who reported bugs or requested features. A special
thanks to Alip, @gbrindisi and michee08.

If you find any pesky bugs or want to request a feature in version 1.1,
please do so here:
http://code.google.com/p/wpscan/

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ