droopescan – A plugin-based scanner that aids security researchers in identifying issues with several CMS.
A plugin-based scanner that aids security researchers in identifying issues with several CMS:
Partial functionality for:
+ Joomla (version enumeration and interesting URLs only)
* fix itt
+ is fast
+ is stable
+ is up to date
+ allows simultaneous scanning of multiple sites
+ is 100% python
+ Scan types: Droopescan aims to be the most accurate by default, while not overloading the target server due to excessive concurrent requests.
+ Target specification: You can specify a particular host to scan by passing url parameter.
+ Authentication : The application fully supports .netrc files and http_proxy environment variables.
+ Output: This application supports both “standard output”, meant for human consumption, or JSON, which is more suitable for machine consumption. This output is stable between major versions.
git clone https://github.com/droope/droopescan.git && cd droopescan
pip install -r requirements.txt
./droopescan scan --help
or install using pip: pip install droopescan
git pull origin master