Skip to content

CMS Scanner: Scan Wordpress, Drupal, Joomla, vBulletin websites for Security issues

License

Notifications You must be signed in to change notification settings

OpenSecurityIN/CMSScan

 
 

Repository files navigation

CMSScan

Scan Wordpress, Drupal, Joomla, vBulletin websites for Security issues.

platform License python

Made with Love in India

CMSScan provides a centralized Security Dashboard for CMS Security scans. It is powered by wpscan, droopescan, vbscan and joomscan. It supports both on demand and scheduled scans and has the ability to sent email reports.

Install

# Requires python3 and git
git clone https://github.com/ajinabraham/CMSScan.git
cd CMSscan
./setup.py

Run

./run.sh

Periodic Scans

You can perform periodic CMS scans with CMSScan. You must run CMSScan server separately and configure the following before running the scheduler.py script.

# SMTP SETTINGS
SMTP_SERVER = ''
FROM_EMAIL = ''
TO_EMAIL = ''

# SERVER SETTINGS
SERVER = ''

# SCAN SITES
WORDPRESS_SITES = []
DRUPAL_SITES = []
JOOMLA_SITES = []
VBULLETIN_SITES = []

Add a cronjob

crontab -e
@weekly /usr/bin/python3 scheduler.py

Docker

Local

docker build -t cmsscan .
docker run -it -p 7070:7070 cmsscan

Prebuilt Image

docker pull opensecurity/cmsscan
docker run -it -p 7070:7070 opensecurity/cmsscan

Screenshots

About

CMS Scanner: Scan Wordpress, Drupal, Joomla, vBulletin websites for Security issues

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • CSS 72.2%
  • JavaScript 14.3%
  • Python 6.6%
  • HTML 6.1%
  • Other 0.8%