WPScan - Wordpress Security Scanner

 Wordpress Security Scanner WPScan is a vulnerability scanner which checks the security of WordPress installations using a black box approach. WPScan is written in Ruby The features of WPScan are :   It will enumerate the Usernames   Weak Password Cracking   Plugin Vulnerability Enumeration   Version Enumeration   Vulnerability Enumeration   etc ........ It can be free downloaded from http://code.google.com/p/wpscan/ OR It...

Read more...

Plecost - Wordpress fingerprint tool

Plecost A Wordpress finger print tool available in open source with Backtrack 5 Plecost retrieves the information contained on the Web site to be analyzed, and also allows a search on the results indexed by Google. It bases your analysis from information contained in the files of development included by WordPress and them plugins. The plugins list is generated based on the list of "Most populars" from wordpress.org, and linked with related...

Read more...

WafW00f - A Web Application Audit Tool

WAFW00F - Web Application Firewall Detection Tool WafW00f is written in  phython and is available freely on the net, the tool is developed By Sandro Gauci && Wendel G. Henrique. they mentions that Web Application Firewalls (WAFs) : can be detected, because they leave several signs can be bypassed by changing the attack in order to avoid rules To help detect and bypass WAFs, they released wafw00f WAFW00F allows one to identify...

Read more...

Google offers encrypted Web search by default

Google announced today that it will encrypt by default Web searches and results for users who are signed in. People who don't have a Google account or are signed out can go directly to https://www.google.com, the company said in a blog post. Encrypting the communications between an end user and the Google search engine servers will protect against snooping by anyone who might be sniffing on an unsecured Wi-Fi network, for instance. Secure Sockets...

Read more...