From b472c2b1950631b6f031761e1f5fc510652c767a Mon Sep 17 00:00:00 2001 From: FireFart Date: Sun, 10 Nov 2013 23:08:59 +0100 Subject: [PATCH 1/3] added a wordpress scanner --- .../scanner/http/wordpress_scanner.rb | 39 +++++++++++++++++++ 1 file changed, 39 insertions(+) create mode 100644 modules/auxiliary/scanner/http/wordpress_scanner.rb diff --git a/modules/auxiliary/scanner/http/wordpress_scanner.rb b/modules/auxiliary/scanner/http/wordpress_scanner.rb new file mode 100644 index 0000000000..329f60dce1 --- /dev/null +++ b/modules/auxiliary/scanner/http/wordpress_scanner.rb @@ -0,0 +1,39 @@ +## +# This module requires Metasploit: http//metasploit.com/download +# Current source: https://github.com/rapid7/metasploit-framework +## + +require 'msf/core' + +class Metasploit3 < Msf::Auxiliary + include Msf::HTTP::Wordpress + include Msf::Auxiliary::Scanner + include Msf::Auxiliary::Report + + def initialize + super( + 'Name' => 'Wordpress Scanner', + 'Description' => 'Detects Wordpress Installations and their version number', + 'Author' => [ 'Christian Mehlmauer ' ], + 'License' => MSF_LICENSE + ) + end + + def run_host(target_host) + print_status("Trying ip #{target_host}") + if wordpress_and_online? + version = wordpress_version + version_string = version ? version : '(no version detected)' + print_good("#{target_host} running Wordpress #{version}") + report_note( + { + :host => target_host, + :proto => 'tcp', + :sname => (ssl ? 'https' : 'http'), + :port => rport, + :type => "Wordpress #{version_string}", + :data => target_uri + }) + end + end +end From 48faa38c44e62b50643da7fa306b084790545d56 Mon Sep 17 00:00:00 2001 From: FireFart Date: Mon, 11 Nov 2013 00:24:32 +0100 Subject: [PATCH 2/3] bugfix for wordpress_scanner --- modules/auxiliary/scanner/http/wordpress_scanner.rb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/auxiliary/scanner/http/wordpress_scanner.rb b/modules/auxiliary/scanner/http/wordpress_scanner.rb index 329f60dce1..81b0967ba4 100644 --- a/modules/auxiliary/scanner/http/wordpress_scanner.rb +++ b/modules/auxiliary/scanner/http/wordpress_scanner.rb @@ -24,7 +24,7 @@ class Metasploit3 < Msf::Auxiliary if wordpress_and_online? version = wordpress_version version_string = version ? version : '(no version detected)' - print_good("#{target_host} running Wordpress #{version}") + print_good("#{target_host} running Wordpress #{version_string}") report_note( { :host => target_host, From 6a28f1f2a76bab86d5806d736e382097b9a74e5d Mon Sep 17 00:00:00 2001 From: sinn3r Date: Tue, 12 Nov 2013 11:29:28 -0600 Subject: [PATCH 3/3] Change 4-space tabs to 2-space tabs --- modules/auxiliary/scanner/http/wordpress_scanner.rb | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/modules/auxiliary/scanner/http/wordpress_scanner.rb b/modules/auxiliary/scanner/http/wordpress_scanner.rb index 81b0967ba4..12b6e50777 100644 --- a/modules/auxiliary/scanner/http/wordpress_scanner.rb +++ b/modules/auxiliary/scanner/http/wordpress_scanner.rb @@ -12,10 +12,10 @@ class Metasploit3 < Msf::Auxiliary def initialize super( - 'Name' => 'Wordpress Scanner', - 'Description' => 'Detects Wordpress Installations and their version number', - 'Author' => [ 'Christian Mehlmauer ' ], - 'License' => MSF_LICENSE + 'Name' => 'Wordpress Scanner', + 'Description' => 'Detects Wordpress Installations and their version number', + 'Author' => [ 'Christian Mehlmauer ' ], + 'License' => MSF_LICENSE ) end