Using WPScan to find WordPress vulnerabilities on your website
WPScan is a black box WordPress Security Scanner written in Ruby. Ideal for penetration testers, security professionals and WordPress administrators WPScan can find security weaknesses within a WordPress blog or website.
How to Enumerate WordPress Users with WPScan
A WordPress security article that explains how to use the popular WordPress security scanner WPScan to enumerate WordPress users or plugins for reporting purposes or WordPress security audits.
Checking the Password Strength of WordPress Users with WPScan
With WPScan WordPress Security Scanner you can launch a security check to ensure that all your users are using strong WordPress passwords. In this WordPress security tutorial we demonstrate how to use WPScan to launch a brute force security check against a WordPress user account.