WordPress is a comprehensive web content management system that does more than you think.

We aim to use this project to promote awareness of WordPress Security Issues. Not through specific vulnerabilities but from a high level that focuses on techniques for improving WordPress Security.

When trying to understand the best way to secure anything, putting yourself in the mind of the attacker is an effective technique. If you know how an attacker would approach a target then you can start to understand ways to minimise the attack surface. Discover the attack surface and secure any exposed vulnerabilities.

wprecon.com is a small project built by the team at hackertarget.com. A primary objective is to highlight WordPress information gathering (recon) techniques. Through knowledge of these techniques we help WordPress administrators secure their sites through understanding and real world techniques.

Having a project separate to our security testing platform allows us to try out new techniques. That can be used to build on our internal WordPress security scanning knowledge.

Happy Scanning!