Plecost: Wordpress Vulnerabilities Finder

There are a huge number of Wordpress around the world. Most of them are exposed to be attacked and be converted into a virus, malware or illegal porn provider, without the knowledge of the blog owner.
This project try to help sysadmins and blog's owners to make a bit secure their Wordpress.

Plecost is a vulnerability fingerprinting and vulnerability finder for Wordpress blog engine. 

What's new?

This Plecost 3 version, add a lot of new features and fixes, like:
  • Fixed a lot of bugs.
  • New engine: without threads or any dependencies, but run more faster. We'll used python 3 asyncio and non-blocking connections. Also consume less memory. Incredible, right? :)
  • Changed CVE update system and storage: Now Plecost get vulnerabilities directly from NIST and create a local SQLite data base with filtered information for Wordpress and theirs plugins.
  • Wordpress vulnerabilities: Now Plecost also manage Wordpress Vulnerabilities (not only for the Plugins).
  • Add local vulnerability database are queryable. You can consult the vulnerabilities for a concrete wordpress or plugins without, using the local database.


Install Plecost is so easy:
$ python3 -m pip install plecost

Remember that Plecost3 only runs in Python 3.

Quick start

Scan a web site si so simple:
$ plecost
A bit complex scan: increasing verbosity exporting results in JSON format and XML:
$ plecost -v -o results.json
$ plecost -v -o results.xml

Example :

 Download and read more at:
Plecost: Wordpress Vulnerabilities Finder Reviewed by Ethical Hacking on 11:00 AM Rating: 5

No comments:

Feel free to ask questions, we love to respond.

All Rights Reserved by The World of IT & Cyber Security: © 2014 - 2015
Powered By Blogger, Designed by Sweetheme

Contact Form


Email *

Message *

Powered by Blogger.