Asking to recommend a product (plugin, theme, book, hosting provider), tool, library, or off-site resource is out of scope for this site, as it attracts opinionated answers and spam. Instead, describe the problem and what has been done so far to solve it.
Closed 4 years ago.
Improve this questionI have just made a WordPress plugin and I would like to scan it for OWASP Top 10 vulnerabilities, any resources on how to get started here?
Thanks
Closed. This question is off-topic. It is not currently accepting answers.Asking to recommend a product (plugin, theme, book, hosting provider), tool, library, or off-site resource is out of scope for this site, as it attracts opinionated answers and spam. Instead, describe the problem and what has been done so far to solve it.
Closed 4 years ago.
Improve this questionI have just made a WordPress plugin and I would like to scan it for OWASP Top 10 vulnerabilities, any resources on how to get started here?
Thanks
Share Improve this question asked Nov 10, 2020 at 5:21 PraveenPraveen 951 silver badge9 bronze badges2 Answers
Reset to default 1Try https://hackertarget/vulnerability-scanner/ it has many other testing tools as well, some are free and others paid.
Check out WPScan. It's normally used as a command line scan tool but there's also a wordpress plugin, which can make your life easier. They have a series of automated scripts that search your website for vulnerabilities and warn you if it finds any. I just don't know how well does it work on plugins, but it's great for overall site vulnerabilities.
It's based on the WPScan Wordpress Vulnerability Database.