by

Install WPScan on Ubuntu 13.10

Prerequisites

Since Ubuntu 13.10 doesn’t come set up for development work out of the box there are a few things you need to download and install first. Thankfully this is made easy by apt-get by just running the following command to get everything ready.

sudo apt-get install libcurl4-gnutls-dev libopenssl-ruby libxml2 libxml2-dev libxslt1-dev ruby-dev build-essential git

Setting up WPScan

First off we need to clone the git repository to get the code for WPScan. We can do this by using the following command.

git clone https://github.com/wpscanteam/wpscan.git

After this we need to move into the wpscan directory that gets created for us.

cd wpscan

Next we need to build the program. This should be as easy as doing the following.

sudo gem install bundler && bundle install –without test development

Using WPScan

After this we should have a working copy of WPScan. You can check that everything is up to date by running the following command.

ruby wpscan.rb –update

Assuming everything went well you can now start using WPScan to test your WordPress installations for common security vulnerabilities. You can find a list of commands you can run using WPScan on the WPScan website.