{"id":18062081,"url":"https://github.com/kaminoweb/wordpress-spotter","last_synced_at":"2025-08-30T16:41:55.089Z","repository":{"id":258787825,"uuid":"875705446","full_name":"kaminoweb/wordpress-spotter","owner":"kaminoweb","description":"WordPress Spotter is a collection of bash scripts to detect if a website is powered by WordPress.","archived":false,"fork":false,"pushed_at":"2025-06-07T20:01:15.000Z","size":53,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-07-22T14:46:07.893Z","etag":null,"topics":["shell","wordpress"],"latest_commit_sha":null,"homepage":"https://kaminoweb.com/","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/kaminoweb.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2024-10-20T16:34:55.000Z","updated_at":"2025-06-07T20:01:19.000Z","dependencies_parsed_at":"2025-07-22T14:35:21.654Z","dependency_job_id":"ecf630c3-a75a-4019-b4b2-e263b76ecf59","html_url":"https://github.com/kaminoweb/wordpress-spotter","commit_stats":null,"previous_names":["kaminoweb/wordpress-spotter"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/kaminoweb/wordpress-spotter","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kaminoweb%2Fwordpress-spotter","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kaminoweb%2Fwordpress-spotter/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kaminoweb%2Fwordpress-spotter/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kaminoweb%2Fwordpress-spotter/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/kaminoweb","download_url":"https://codeload.github.com/kaminoweb/wordpress-spotter/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kaminoweb%2Fwordpress-spotter/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":272878212,"owners_count":25008340,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-08-30T02:00:09.474Z","response_time":77,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["shell","wordpress"],"created_at":"2024-10-31T05:05:38.475Z","updated_at":"2025-08-30T16:41:55.071Z","avatar_url":"https://github.com/kaminoweb.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# WordPress Spotter\n\n**WordPress Spotter** is a collection of bash scripts to detect if a website is powered by WordPress. It uses various methods, including scanning for WordPress-specific files, directories, headers, cookies, and REST API endpoints. This tool helps automate the detection of WordPress sites by performing multiple checks and ensuring comprehensive results.\n\n## Features\n\n- **Check for common WordPress directories**: Detects if the website has `/wp-content/` or `/wp-includes/` in its structure.\n- **Check meta tags**: Looks for the WordPress generator meta tag in the HTML.\n- **Check HTTP headers**: Scans for WordPress-specific HTTP headers such as `X-Powered-By`.\n- **Check for WordPress login page**: Detects the existence of `/wp-login.php`.\n- **Check WordPress REST API**: Verifies if the site responds to WordPress REST API endpoints like `/wp-json/`.\n- **Check for WordPress cookies**: Identifies WordPress-specific cookies such as `wordpress_logged_in_`.\n- **Check for common files**: Scans for `license.txt`, `readme.html`, `xmlrpc.php`, and themes to identify WordPress installations.\n- **Comprehensive URL validation**: Ensures the URL is properly formatted before running tests.\n\n## Prerequisites\n\nMake sure you have the following installed on your system:\n\n- **bash**: Most Linux/Unix systems have Bash preinstalled.\n- **curl**: Used to make HTTP requests.\n- **grep**: Used for text searching within files and responses (usually preinstalled).\n\n## Installation\n\nClone the repository to your local machine and navigate to the project directory. \n\n```bash\ngit clone https://github.com/yourusername/wordpress-spotter.git\ncd wordpress-spotter\n```\n\nMake sure the scripts are executable.\n\n```bash\nchmod +x *.bsh\n```\n\n## Usage\n\nRun any of the detection scripts by passing a URL as an argument. For example, to check the WordPress REST API.\n\n```bash\n./check-wp-api.sh https://example.com\n```\n\nYou can also run the combined detection script to perform multiple checks at once.\n\n```bash\n./check-wp-api.sh https://example.com\n```\n\n## Example Output\n\n```bash\n./check-wp-api.sh https://example.com\nURL is properly formatted.\nWordPress detected via REST API.\n```\n\n### Available Scripts\n\n| Script Name             | Description |\n| ----------------------- | ----------- |\n| `check-wp-directories.bsh`    | Checks for common WordPress directories (`/wp-content/`, `/wp-includes/`). |\n| `check-wp-meta.bsh`       | Detects if a WordPress meta tag is present. |\n| `check-wp-header.bsh`     | Scans HTTP headers for WordPress-related information. |\n| `check-wp-loginpage.bsh` | Verifies the existence of the WordPress login page (`/wp-login.php`). |\n| `check-wp-api.bsh`        | Checks if the website responds to WordPress REST API requests. |\n| `check-wp-api2.bsh`        | Checks if the website responds to WordPress REST API v2 requests. |\n| `check-wp-cookies.bsh`    | Detects WordPress-specific cookies such as `wordpress_logged_in_`. |\n| `check-wp-license.bsh`    | Checks for the existence of `license.txt` in the root directory. |\n| `check-wp-readme.bsh`     | Detects `readme.html` to identify WordPress. |\n| `check-wp-theme.bsh`      | Checks for common WordPress themes like `twentytwentyone`. |\n| `check-wp-xmlrpc.bsh`     | Checks for the presence of the `xmlrpc.php` file. |\n| `check-wp-graphql.bsh`   | Test if the website responds to the WordPress GraphQL API. |\n| `check-wp-pingback.bsh`   | Scans for WordPress `X-Pingback` header. |\n\n## URL Validation\n\nThe scripts include a URL validation function to ensure that the URL passed as an argument is correctly formatted (i.e., starting with `http://` or `https://`). If the URL is not properly formatted, the script will output an error and stop execution.\n\n## Contributing\n\nFeel free to fork the repository and submit pull requests if you have improvements or additional detection methods to contribute.\n\n### Steps to Contribute\n\n1. Fork the repository.\n2. Create a new branch for your feature or bug fix.\n3. Make your changes.\n4. Commit your changes and push to your fork.\n5. Submit a pull request.\n\n## License\n\nThis project is licensed under the **GNU General Public License v3.0**. See the [LICENSE](LICENSE) file for details.\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkaminoweb%2Fwordpress-spotter","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fkaminoweb%2Fwordpress-spotter","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkaminoweb%2Fwordpress-spotter/lists"}