Scan WordPress, Drupal, Joomla, vBulletin websites for Security issues.
Install
# Requires ruby, ruby-dev, gem, python3 and git
git clone https://github.com/ajinabraham/CMSScan.git
cd CMSScan
./setup.sh
Run./run.sh
Periodic Scans
You can perform periodic CMS scans with CMSScan. You must run CMSScan server separately and configure the following before running the scheduler.py
script.
# SMTP SETTINGS
SMTP_SERVER = ''
FROM_EMAIL = ''
TO_EMAIL = ''
# SERVER SETTINGS
SERVER = ''
# SCAN SITES
WORDPRESS_SITES = []
DRUPAL_SITES = []
JOOMLA_SITES = []
VBULLETIN_SITES = []
Add a cronjob
crontab -e
@weekly /usr/bin/python3 scheduler.py
Docker
Local
docker build -t cmsscan .
docker run -it -p 7070:7070 cmsscan
Prebuilt Image
docker pull opensecurity/cmsscan
docker run -it -p 7070:7070 opensecurity/cmsscan
Screenshots