WPScan
WPScan is a very fast WordPress vulnerability scanner written in the Ruby programming language and preinstalled in Kali Linux.
The following information can be extracted using WPScan:
- The plugins list
- The name of the theme
- Weak passwords and usernames using the brute forcing technique
- Details of the version
- Possible vulnerabilities
Some additional CMS tools available in Kali Linux are listed in following subsections.