wpscan 3.0

data/wpscan.gemspec

@@ -0,0 +1,55 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'wpscan/version'
+
+Gem::Specification.new do |s|
+  s.name                  = 'wpscan'
+  s.version               = WPScan::VERSION
+  s.platform              = Gem::Platform::RUBY
+  s.required_ruby_version = '>= 2.2.2'
+  s.authors               = ['WPScanTeam']
+  s.date                  = Time.now.utc.strftime('%Y-%m-%d')
+  s.email                 = ['team@wpscan.org']
+  s.summary               = 'WPScan - WordPress Vulnerability Scanner'
+  s.description           = 'WPScan is a black box WordPress vulnerability scanner.'
+  s.homepage              = 'https://wpscan.org/'
+  s.license               = 'Dual'
+
+  s.files                 = Dir.glob('**/*').reject do |file|
+    file =~ %r{^(?:
+      spec\/.*
+      |Gemfile
+      |Rakefile
+      |Dockerfile
+      |\.rspec
+      |\.gitignore
+      |\.gitlab-ci.yml
+      |\.rubocop.yml
+      |\.travis.yml
+      |\.ruby-gemset
+      |\.ruby-version
+      |\.dockerignore
+      )$}x
+  end
+  s.test_files            = []
+  s.executables           = s.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  s.require_path          = 'lib'
+
+  s.add_dependency 'yajl-ruby', '~> 1.3.0' # Better JSON parser regarding memory usage
+  s.add_dependency 'cms_scanner', '~> 0.0.37.7'
+  s.add_dependency 'activesupport', '~> 5.0.1.0' # Not sure if needed there as already needed in the CMSScanner
+  # DB dependencies
+  s.add_dependency 'dm-core', '~> 1.2.0'
+  s.add_dependency 'dm-migrations', '~> 1.2.0'
+  s.add_dependency 'dm-constraints', '~> 1.2.0'
+  s.add_dependency 'dm-sqlite-adapter', '~> 1.2.0'
+
+  s.add_development_dependency 'rake', '~> 12.0'
+  s.add_development_dependency 'rspec', '~> 3.5.0'
+  s.add_development_dependency 'rspec-its', '~> 1.2.0'
+  s.add_development_dependency 'bundler', '~> 1.6'
+  s.add_development_dependency 'rubocop', '~> 0.47.1'
+  s.add_development_dependency 'webmock', '~> 1.22.0'
+  s.add_development_dependency 'simplecov', '~> 0.12.0'
+end

metadata

@@ -0,0 +1,419 @@
+--- !ruby/object:Gem::Specification
+name: wpscan
+version: !ruby/object:Gem::Version
+  version: '3.0'
+platform: ruby
+authors:
+- WPScanTeam
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2017-01-27 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: yajl-ruby
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.3.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.3.0
+- !ruby/object:Gem::Dependency
+  name: cms_scanner
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.0.37.7
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.0.37.7
+- !ruby/object:Gem::Dependency
+  name: activesupport
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 5.0.1.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 5.0.1.0
+- !ruby/object:Gem::Dependency
+  name: dm-core
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+- !ruby/object:Gem::Dependency
+  name: dm-migrations
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+- !ruby/object:Gem::Dependency
+  name: dm-constraints
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+- !ruby/object:Gem::Dependency
+  name: dm-sqlite-adapter
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.5.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.5.0
+- !ruby/object:Gem::Dependency
+  name: rspec-its
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.47.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.47.1
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.22.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.22.0
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.12.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.12.0
+description: WPScan is a black box WordPress vulnerability scanner.
+email:
+- team@wpscan.org
+executables:
+- wpscan
+extensions: []
+extra_rdoc_files: []
+files:
+- Gemfile.lock
+- LICENSE
+- README.md
+- app/app.rb
+- app/controllers.rb
+- app/controllers/brute_force.rb
+- app/controllers/core.rb
+- app/controllers/custom_directories.rb
+- app/controllers/enumeration.rb
+- app/controllers/enumeration/cli_options.rb
+- app/controllers/enumeration/enum_methods.rb
+- app/controllers/main_theme.rb
+- app/controllers/wp_version.rb
+- app/finders.rb
+- app/finders/config_backups.rb
+- app/finders/config_backups/known_filenames.rb
+- app/finders/interesting_findings.rb
+- app/finders/interesting_findings/backup_db.rb
+- app/finders/interesting_findings/debug_log.rb
+- app/finders/interesting_findings/duplicator_installer_log.rb
+- app/finders/interesting_findings/full_path_disclosure.rb
+- app/finders/interesting_findings/mu_plugins.rb
+- app/finders/interesting_findings/multisite.rb
+- app/finders/interesting_findings/readme.rb
+- app/finders/interesting_findings/registration.rb
+- app/finders/interesting_findings/tmm_db_migrate.rb
+- app/finders/interesting_findings/upload_directory_listing.rb
+- app/finders/interesting_findings/upload_sql_dump.rb
+- app/finders/main_theme.rb
+- app/finders/main_theme/css_style.rb
+- app/finders/main_theme/urls_in_homepage.rb
+- app/finders/main_theme/woo_framework_meta_generator.rb
+- app/finders/medias.rb
+- app/finders/medias/attachment_brute_forcing.rb
+- app/finders/plugin_version.rb
+- app/finders/plugin_version/layer_slider/translation_file.rb
+- app/finders/plugin_version/readme.rb
+- app/finders/plugin_version/revslider/release_log.rb
+- app/finders/plugin_version/sitepress_multilingual_cms/meta_generator.rb
+- app/finders/plugin_version/sitepress_multilingual_cms/version_parameter.rb
+- app/finders/plugin_version/w3_total_cache/headers.rb
+- app/finders/plugins.rb
+- app/finders/plugins/comments.rb
+- app/finders/plugins/headers.rb
+- app/finders/plugins/known_locations.rb
+- app/finders/plugins/urls_in_homepage.rb
+- app/finders/theme_version.rb
+- app/finders/theme_version/style.rb
+- app/finders/theme_version/woo_framework_meta_generator.rb
+- app/finders/themes.rb
+- app/finders/themes/known_locations.rb
+- app/finders/themes/urls_in_homepage.rb
+- app/finders/timthumb_version.rb
+- app/finders/timthumb_version/bad_request.rb
+- app/finders/timthumbs.rb
+- app/finders/timthumbs/known_locations.rb
+- app/finders/users.rb
+- app/finders/users/author_id_brute_forcing.rb
+- app/finders/users/author_posts.rb
+- app/finders/users/login_error_messages.rb
+- app/finders/users/wp_json_api.rb
+- app/finders/wp_items.rb
+- app/finders/wp_items/urls_in_homepage.rb
+- app/finders/wp_version.rb
+- app/finders/wp_version/atom_generator.rb
+- app/finders/wp_version/meta_generator.rb
+- app/finders/wp_version/opml_generator.rb
+- app/finders/wp_version/rdf_generator.rb
+- app/finders/wp_version/readme.rb
+- app/finders/wp_version/rss_generator.rb
+- app/finders/wp_version/sitemap_generator.rb
+- app/finders/wp_version/stylesheets.rb
+- app/finders/wp_version/unique_fingerprinting.rb
+- app/models.rb
+- app/models/config_backup.rb
+- app/models/interesting_finding.rb
+- app/models/media.rb
+- app/models/plugin.rb
+- app/models/theme.rb
+- app/models/timthumb.rb
+- app/models/user.rb
+- app/models/wp_item.rb
+- app/models/wp_version.rb
+- app/models/xml_rpc.rb
+- app/views/cli/brute_force/error.erb
+- app/views/cli/brute_force/found.erb
+- app/views/cli/brute_force/users.erb
+- app/views/cli/core/banner.erb
+- app/views/cli/core/db_update_finished.erb
+- app/views/cli/core/db_update_started.erb
+- app/views/cli/core/not_fully_configured.erb
+- app/views/cli/enumeration/config_backups.erb
+- app/views/cli/enumeration/medias.erb
+- app/views/cli/enumeration/plugins.erb
+- app/views/cli/enumeration/themes.erb
+- app/views/cli/enumeration/timthumbs.erb
+- app/views/cli/enumeration/users.erb
+- app/views/cli/finding.erb
+- app/views/cli/info.erb
+- app/views/cli/main_theme/theme.erb
+- app/views/cli/notice.erb
+- app/views/cli/theme.erb
+- app/views/cli/usage.erb
+- app/views/cli/vulnerability.erb
+- app/views/cli/wp_version/version.erb
+- app/views/json/brute_force/users.erb
+- app/views/json/core/banner.erb
+- app/views/json/core/db_update_finished.erb
+- app/views/json/core/db_update_started.erb
+- app/views/json/core/not_fully_configured.erb
+- app/views/json/enumeration/config_backups.erb
+- app/views/json/enumeration/medias.erb
+- app/views/json/enumeration/plugins.erb
+- app/views/json/enumeration/themes.erb
+- app/views/json/enumeration/timthumbs.erb
+- app/views/json/enumeration/users.erb
+- app/views/json/finding.erb
+- app/views/json/main_theme/theme.erb
+- app/views/json/theme.erb
+- app/views/json/wp_version/version.erb
+- bin/wpscan
+- coverage/assets/0.10.0/application.css
+- coverage/assets/0.10.0/application.js
+- coverage/assets/0.10.0/colorbox/border.png
+- coverage/assets/0.10.0/colorbox/controls.png
+- coverage/assets/0.10.0/colorbox/loading.gif
+- coverage/assets/0.10.0/colorbox/loading_background.png
+- coverage/assets/0.10.0/favicon_green.png
+- coverage/assets/0.10.0/favicon_red.png
+- coverage/assets/0.10.0/favicon_yellow.png
+- coverage/assets/0.10.0/loading.gif
+- coverage/assets/0.10.0/magnify.png
+- coverage/assets/0.10.0/smoothness/images/ui-bg_flat_0_aaaaaa_40x100.png
+- coverage/assets/0.10.0/smoothness/images/ui-bg_flat_75_ffffff_40x100.png
+- coverage/assets/0.10.0/smoothness/images/ui-bg_glass_55_fbf9ee_1x400.png
+- coverage/assets/0.10.0/smoothness/images/ui-bg_glass_65_ffffff_1x400.png
+- coverage/assets/0.10.0/smoothness/images/ui-bg_glass_75_dadada_1x400.png
+- coverage/assets/0.10.0/smoothness/images/ui-bg_glass_75_e6e6e6_1x400.png
+- coverage/assets/0.10.0/smoothness/images/ui-bg_glass_95_fef1ec_1x400.png
+- coverage/assets/0.10.0/smoothness/images/ui-bg_highlight-soft_75_cccccc_1x100.png
+- coverage/assets/0.10.0/smoothness/images/ui-icons_222222_256x240.png
+- coverage/assets/0.10.0/smoothness/images/ui-icons_2e83ff_256x240.png
+- coverage/assets/0.10.0/smoothness/images/ui-icons_454545_256x240.png
+- coverage/assets/0.10.0/smoothness/images/ui-icons_888888_256x240.png
+- coverage/assets/0.10.0/smoothness/images/ui-icons_cd0a0a_256x240.png
+- coverage/index.html
+- lib/wpscan.rb
+- lib/wpscan/browser.rb
+- lib/wpscan/controller.rb
+- lib/wpscan/controllers.rb
+- lib/wpscan/db.rb
+- lib/wpscan/db/dynamic_finders.rb
+- lib/wpscan/db/plugin.rb
+- lib/wpscan/db/plugins.rb
+- lib/wpscan/db/schema.rb
+- lib/wpscan/db/theme.rb
+- lib/wpscan/db/themes.rb
+- lib/wpscan/db/updater.rb
+- lib/wpscan/db/wp_item.rb
+- lib/wpscan/db/wp_items.rb
+- lib/wpscan/db/wp_version.rb
+- lib/wpscan/errors/http.rb
+- lib/wpscan/errors/update.rb
+- lib/wpscan/errors/wordpress.rb
+- lib/wpscan/finders.rb
+- lib/wpscan/finders/finder/plugin_version/comments.rb
+- lib/wpscan/finders/finder/wp_version/smart_url_checker.rb
+- lib/wpscan/helper.rb
+- lib/wpscan/references.rb
+- lib/wpscan/target.rb
+- lib/wpscan/target/platform/wordpress.rb
+- lib/wpscan/target/platform/wordpress/custom_directories.rb
+- lib/wpscan/version.rb
+- lib/wpscan/vulnerability.rb
+- lib/wpscan/vulnerable.rb
+- wpscan-v3.sublime-project
+- wpscan-v3.sublime-workspace
+- wpscan.gemspec
+homepage: https://wpscan.org/
+licenses:
+- Dual
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.2.2
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.6.10
+signing_key: 
+specification_version: 4
+summary: WPScan - WordPress Vulnerability Scanner
+test_files: []