WPWatcher - Automating WPScan to scan and report vulnerable Wordpress sites
Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found.
Features
- Scan multiple sites with WPScan
- Parse WPScan output and divide the results in "Alerts", "Warnings" and "Informations"
- Handled VulnDB API limit
- Define reporting emails addresses for every configured site individually and globally
- Define false positives strings for every configured site individually and globally
- Define WPScan arguments for every configured site individually and globally
- Send WPScan findings to Syslog server
- Save raw WPScan output into files
- Log file lists all the findings
- Speed up scans using several asynchronous workers
- Follow URL redirection if WPScan fails and propose to ignore main redirect
- Scan sites continuously at defined interval and configure script as a linux service
- Additionnal alerts depending of finding type (SQL dump, etc.)
- Keep track of fixed and unfixed issues
Documentation
Usage exemple
Scan two sites, add WPScan arguments, follow URL redirection and email report to recepients. If you reach your API limit, it will wait and continue 24h later.
wpwatcher --url exemple.com exemple1.com \
--wpscan_args "--force --stealthy --api-token <TOKEN>" \
--follow_redirect --api_limit_wait \
--send --infos --email_to [email protected] [email protected]WPWatcher must read a configuration file to send mail reports. This exemple assume you have filled your config file with mail server setings.
Emails
Sample email report.
Authors
- Florian Roth (Original author of WPWatcher v0.2)
- Tristan Landes
Disclamer
Use at your own risks.