Scan WordPress Sites For Security Issues With WPScan On Kali

Learn how to use WPScan to scan WordPress for vulnerabilities on Kali Linux in this LinuxConfig.org guide.

Vulnerabilities in WordPress can be uncovered by the WPScan utility, which comes installed by default in Kali Linux. It's also a great tool for gathering general reconnaissance information about a website that's running WordPress.

Owners of WordPress sites would be wise to try running WPScan against their site, as it may reveal security issues that need patched. It can also reveal more general web server issues, such as directory listings that haven't been turned off inside Apache or NGINX.