Info BackTrack

Linux & Security Tutorial

Information Gathering Web dengan Wpscan


Tutorial Wpscan ini sebenarnya sudah sangat basi di index google, maka dari itu disini saya langsung posting cara menggunakannya aja berdasarkan contoh pas intronya si wpscan.

____________________________________________________
 __          _______   _____
 \ \        / /  __ \ / ____|
  \ \  /\  / /| |__) | (___   ___  __ _ _ __
   \ \/  \/ / |  ___/ \___ \ / __|/ _` | '_ \
    \  /\  /  | |     ____) | (__| (_| | | | |
     \/  \/  |_|    |_____/ \___|\__,_|_||_| v1.1r425

    WordPress Security Scanner by the WPScan Team
 Sponsored by the RandomStorm Open Source Initiative
_____________________________________________________

[WARNING] The SVN repository is DEPRECATED, use the GIT one - http://github.com/wpscanteam/wpscan

--help or -h for further help.

Examples :

-Do 'non-intrusive' checks ...
ruby wpscan.rb --url www.example.com

-Do wordlist password brute force on enumerated users using 50 threads ...
ruby wpscan.rb --url www.example.com --wordlist darkc0de.lst --threads 50

-Do wordlist password brute force on the 'admin' username only ...
ruby wpscan.rb --url www.example.com --wordlist darkc0de.lst --username admin

-Enumerate instaled plugins ...
ruby wpscan.rb --url www.example.com --enumerate p

-Use a proxy ...
ruby wpscan.rb --url www.example.com --proxy 127.0.0.1:8118

-Use custom content directory ...
ruby wpscan.rb -u www.example.com --wp-content-dir custom-content

-Update ...
ruby wpscan.rb --update

See README for further information.

— Scanning secara sederhana, target –> www.infobintang.com .

lindo@laptop:/pentest/web/wpscan# ruby wpscan.rb --url www.examplewordpress.com
____________________________________________________
 __          _______   _____
 \ \        / /  __ \ / ____|
  \ \  /\  / /| |__) | (___   ___  __ _ _ __
   \ \/  \/ / |  ___/ \___ \ / __|/ _` | '_ \
    \  /\  /  | |     ____) | (__| (_| | | | |
     \/  \/  |_|    |_____/ \___|\__,_|_||_| v1.1r425

    WordPress Security Scanner by the WPScan Team
 Sponsored by the RandomStorm Open Source Initiative
_____________________________________________________

[WARNING] The SVN repository is DEPRECATED, use the GIT one - http://github.com/wpscanteam/wpscan

| URL: http://www.examplewordpress.com
| Started on Tue Aug 14 04:12:33 2012

[!] The WordPress theme in use is twentyeleven v1.3
[!] WordPress version 3.3.1 identified from rss generator

[+] We have identified 2 vulnerabilities from the version number :

 | * Title: Multiple vulnerabilities including XSS and Privilege Escalation
 | * Reference: http://wordpress.org/news/2012/04/wordpress-3-3-2/

 | * Title: WordPress 3.3.1 Multiple CSRF Vulnerabilities
 | * Reference: http://www.exploit-db.com/exploits/18791/

[+] Enumerating plugins from passive detection ... 1 found :

 | Name: nextgen-gallery
 | Location: http://www.examplewordpress.com/$wp-plugins$/nextgen-gallery/
 |
 | [!] XSS in NextGEN Gallery <= 1.5.1
 | * Reference: http://www.exploit-db.com/exploits/12098/

[+] Finished at Tue Aug 14 04:13:01 2012

— Mengscanning plugin wordpress , target –> www.infobintang.com .


lindo@laptop:/pentest/web/wpscan# ruby wpscan.rb --url http://www.infobintang.com/ --enumerate p
____________________________________________________
 __          _______   _____
 \ \        / /  __ \ / ____|
  \ \  /\  / /| |__) | (___   ___  __ _ _ __
   \ \/  \/ / |  ___/ \___ \ / __|/ _` | '_ \
    \  /\  /  | |     ____) | (__| (_| | | | |
     \/  \/  |_|    |_____/ \___|\__,_|_||_| v1.1r425

    WordPress Security Scanner by the WPScan Team
 Sponsored by the RandomStorm Open Source Initiative
_____________________________________________________

[WARNING] The SVN repository is DEPRECATED, use the GIT one - http://github.com/wpscanteam/wpscan

| URL: http://www.infobintang.com/
| Started on Tue Aug 14 03:58:35 2012

[!] The WordPress theme in use is kangtasep v1.4
[!] The WordPress 'http://www.infobintang.com/readme.html' file exists
[!] Full Path Disclosure (FPD) in 'http://www.infobintang.com/wp-includes/rss-functions.php'
[!] WordPress version 3.3.1 identified from meta generator

[+] We have identified 2 vulnerabilities from the version number :

 | * Title: Multiple vulnerabilities including XSS and Privilege Escalation
 | * Reference: http://wordpress.org/news/2012/04/wordpress-3-3-2/

 | * Title: WordPress 3.3.1 Multiple CSRF Vulnerabilities
 | * Reference: http://www.exploit-db.com/exploits/18791/

[+] Enumerating plugins from passive detection ... 2 found :

 | Name: jj-nextgen-jquery-carousel
 | Location: http://www.infobintang.com/$wp-plugins$/jj-nextgen-jquery-carousel/

 | Name: nextgen-gallery
 | Location: http://www.infobintang.com/$wp-plugins$/nextgen-gallery/
 |
 | [!] XSS in NextGEN Gallery <= 1.5.1
 | * Reference: http://www.exploit-db.com/exploits/12098/

[+] Enumerating installed plugins  ...
Checking for 2396 total plugins... 10% complete. ----------> scanning masih 10% tapi sudah saya stop.

Untuk Syntax lainnya ikutin aja contoh syntax pas intro-nya si Wpscan, nih contoh intro-nya :

Examples :

-Do 'non-intrusive' checks ...
ruby wpscan.rb --url www.example.com

-Do wordlist password brute force on enumerated users using 50 threads ...
ruby wpscan.rb --url www.example.com --wordlist darkc0de.lst --threads 50

-Do wordlist password brute force on the 'admin' username only ...
ruby wpscan.rb --url www.example.com --wordlist darkc0de.lst --username admin

-Enumerate instaled plugins ...
ruby wpscan.rb --url www.example.com --enumerate p

-Use a proxy ...
ruby wpscan.rb --url www.example.com --proxy 127.0.0.1:8118

-Use custom content directory ...
ruby wpscan.rb -u www.example.com --wp-content-dir custom-content

—done ,

Lindo

Sumber : Cuman utak atik sendiri , kalo ada kekurangan silahkan di tambahkan.

Artikel Terkait:

4 responses to “Information Gathering Web dengan Wpscan

  1. jay August 17, 2012 at 7:31 am

    moderation.

    Bang, punya saya error ya?
    gk bisa buat scann?
    errornya seperti ini===>>>
    root@bt:/pentest/web/wpscan# ruby wpscan.rb –url http://www.infobintang.com/ –enumerate p
    [ERROR] Install missing ruby gem. Please see README file or http://code.google.com/p/wpscan/
    #

    kenapa ya bang?
    terima kasih

  2. deny kurniawan December 10, 2012 at 3:07 am

    gan download wordlist nya di mana ?? ya darkc0de.lst ???

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: