This tool can analyze WordPress sites to search for vulnerable settings/plugins
and mostly common vulnerabilities.
# -v | verbose # --url URL | the url of the target website # --rua | use a random user agent on HTTP requests # -e vp | vulnerable plugins mode (vp) # --plugins-detection | aggressive: it will scrap web urls the hardcore way wpscan -v --url https://thewebsite.com --rua -e vp --plugins-detection aggressive` # See `wpscan --help` for more.