Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found.
WPWatcher - Automating WPScan to scan and report vulnerable Wordpress sites
Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found.
Scan two sites, add WPScan arguments, follow URL redirection and email report to recepients. If you reach your API limit, it will wait and continue 24h later.
wpwatcher --url exemple.com exemple1.com \
--wpscan_args "--force --stealthy --api-token <TOKEN>" \
--follow_redirect --api_limit_wait \
--send --infos --email_to [email protected] [email protected]
WPWatcher must read a configuration file to send mail reports. This exemple assume you have filled your config file with mail server setings.
Sample email report.
Use at your own risks.