OWASP Wpbullet

![OWASP_Project_Header.jpg](OWASP_Project_Header.jpg "OWASP_Project_Header.jpg")

Template:Project About



OWASP wpBullet is an opensource software that was developed for identifying security vulnerabilities in WordPress plugins and themes. It was built following flexible patterns to allow maximum flexibility and ease of creating new detection rules. Beside analyzing source code for vulnerabilities, this tool will also map all exposed hooks which give a researcher a good starting point where to look for flaws.


This program is free software: you can redistribute it and/or modify it under the terms of the link GNU Affero General Public License 2.0 as published by the Free Software Foundation, either version 2 of the License, or (at your option) any later version. Copyright © by Luka Sikic 2019.


As of July, 2019, the highest priorities for the next 6 months are: </p>

  • Reduce the number of false-positive results
  • Add check for nonce verification, user capability/permission checks
  • Make output more user-friendly
  • Add support for results output in HTML format


Getting Involved

You can contribute to the project on GitHub repository. If you have any questions feel free to reach out at luka [ at ] sikic.eu

Project Leader

Luka Sikic

</td> </tr> </tbody> </table>

project_name = WpBullet


Put whatever you like here: news, screenshots, features, supporters, or remove this file and don’t use tabs at all.