The WordPress Security Checker is a tool designed to assess the security posture of WordPress websites. It performs a series of checks to identify potential vulnerabilities and security misconfigurations in WordPress installations.
- SSL/HTTPS check
- WordPress version detection
- Theme and plugin enumeration
- Directory indexing check
- wp-cron.php accessibility check
- User enumeration vulnerability check
- XML-RPC enabled/disabled status
- Hosting provider identification
- robots.txt file check
- Comprehensive security issue reporting
Contributions to the WordPress Security Checker are welcome! Here's how you can contribute:
- Fork the repository.
- Create a new branch for your feature or bug fix.
- Make your changes and commit them with descriptive commit messages.
- Push your changes to your fork.
- Submit a pull request to the main repository.
Please ensure your code adheres to the existing style and includes appropriate tests.
This project is licensed under the MIT License - see the LICENSE file for details.
This tool is for educational and informational purposes only. Always obtain proper authorization before scanning websites you do not own or have explicit permission to test.