{"id":15009734,"url":"https://github.com/the404hacking/cmsmap","last_synced_at":"2025-04-09T17:51:31.361Z","repository":{"id":109047436,"uuid":"110854072","full_name":"The404Hacking/CMSmap","owner":"The404Hacking","description":"CMSmap tool v0.6 - Simple CMS Scanner","archived":false,"fork":false,"pushed_at":"2017-11-15T17:23:19.000Z","size":2321,"stargazers_count":14,"open_issues_count":0,"forks_count":5,"subscribers_count":0,"default_branch":"master","last_synced_at":"2025-03-23T19:51:24.780Z","etag":null,"topics":["cms","cmsmap","py","python","scan","scanner","the404hacking"],"latest_commit_sha":null,"homepage":"https://T.me/The404Hacking","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/The404Hacking.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2017-11-15T15:52:15.000Z","updated_at":"2025-02-28T21:49:21.000Z","dependencies_parsed_at":"2023-04-27T04:32:13.088Z","dependency_job_id":null,"html_url":"https://github.com/The404Hacking/CMSmap","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/The404Hacking%2FCMSmap","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/The404Hacking%2FCMSmap/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/The404Hacking%2FCMSmap/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/The404Hacking%2FCMSmap/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/The404Hacking","download_url":"https://codeload.github.com/The404Hacking/CMSmap/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248083116,"owners_count":21045044,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cms","cmsmap","py","python","scan","scanner","the404hacking"],"created_at":"2024-09-24T19:28:07.113Z","updated_at":"2025-04-09T17:51:31.340Z","avatar_url":"https://github.com/The404Hacking.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"[CMSmap](https://github.com/The404Hacking/CMSmap) v0.6 - Simple CMS Scanner\n================================\n\n![CMSmap](Screenshot.png?raw=true \"CMSmap\")\n\nCMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs. The main purpose of CMSmap is to integrate common vulnerabilities \nfor different types of CMSs in a single tool. \n\nAt the moment, CMSs supported by CMSmap are WordPress, Joomla and Drupal.\n\nPlease note that this project is an early state. As such, you might find bugs, flaws or mulfunctions.\nUse it at your own risk!\n\n\nInstallation\n=====\nYou can download the latest version of CMSmap by cloning the GitHub repository:\n\n\tgit clone https://github.com/The404Hacking/CMSmap.git\n\n\nUsage\n=====\n\tCMSmap tool v0.6 - Simple CMS Scanner\n\tAuthor: Mike Manzotti mike.manzotti@dionach.com\n\tUsage: cmsmap.py -t \u003cURL\u003e\n\tTargets:\n\t\t -t, --target    target URL (e.g. 'https://example.com:8080/')\n\t\t -f, --force     force scan (W)ordpress, (J)oomla or (D)rupal\n\t\t -F, --fullscan  full scan using large plugin lists. False positives and slow!\n\t\t -a, --agent     set custom user-agent\n\t\t -T, --threads   number of threads (Default: 5)\n\t\t -i, --input     scan multiple targets listed in a given text file\n\t\t -o, --output    save output in a file\n\t\t --noedb         enumerate plugins without searching exploits\n\n\tBrute-Force:\n\t\t -u, --usr       username or file\n\t\t -p, --psw       password or file\n\t\t --noxmlrpc      brute forcing WordPress without XML-RPC\n\n\tPost Exploitation:\n\t\t -k, --crack     password hashes file (Require hashcat installed. For WordPress and Joomla only)\n\t\t -w, --wordlist  wordlist file\n\n\tOthers:\n\t\t -v, --verbose   verbose mode (Default: false)\n\t\t -U, --update    (C)MSmap, (W)ordpress plugins and themes, (J)oomla components, (D)rupal modules, (A)ll\n\t\t -h, --help      show this help\n\n\tExamples:\n\t\t cmsmap.py -t https://example.com\n\t\t cmsmap.py -t https://example.com -f W -F --noedb\n\t\t cmsmap.py -t https://example.com -i targets.txt -o output.txt\n\t\t cmsmap.py -t https://example.com -u admin -p passwords.txt\n\t\t cmsmap.py -k hashes.txt -w passwords.txt\n\n\nNotes\n=====\n30/03/2015: Created a new repo to remove big wordlist. Users who have originally cloned the previous repo are invited to clone the new one.\n  \n\t\nDisclaimer\n=====\nUsage of CMSmap for attacking targets without prior mutual consent is illegal. \nIt is the end user's responsibility to obey all applicable local, state and federal laws. \nDevelopers assume NO liability and are NOT responsible for any misuse or damage caused by this program.\n\n\n## Download and Clone\n\u003e Download: [https://github.com/The404Hacking/CMSmap/archive/master.zip](https://github.com/The404Hacking/CMSmap/archive/master.zip)\n\n\u003e Clone: git clone [https://github.com/The404Hacking/CMSmap](https://github.com/The404Hacking/CMSmap.git)\n\n## The404Hacking | Digital UnderGround Team\n[The404Hacking](https://T.me/The404Hacking)\n\n## Follow us !\n[The404Hacking](https://T.me/The404Hacking) - [The404Cracking](https://T.me/The404Cracking)\n\n[Instagram](https://instagram.com/The404Hacking) - [GitHub](https://github.com/The404Hacking)\n\n[YouTube](http://yon.ir/youtube404) - [Aparat](http://www.aparat.com/The404Hacking)\n\n[Weblog](http://the404hacking.blogsky.com) - [Email](mailto:The404Hacking.Team@Gmail.Com)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fthe404hacking%2Fcmsmap","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fthe404hacking%2Fcmsmap","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fthe404hacking%2Fcmsmap/lists"}