A wordpress security auditor! Audit your wordpress application for security issues with even 1 request.
Alternatives To Fastaudit
Project NameStarsDownloadsRepos Using ThisPackages Using ThisMost Recent CommitTotal ReleasesLatest ReleaseOpen IssuesLicenseLanguage
My Arsenal Of Aws Security Tools7,955
a month ago2apache-2.0Shell
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
a month ago197bsd-3-clauseJavaScript
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
2 days ago44April 06, 2022169gpl-2.0Python
Multi-Cloud Security Auditing Tool
8 months ago11Python
Awesome Cloud Security1,549
8 days ago4
🛡️ Awesome Cloud Security Resources ⚔️
3 months agogpl-3.0Shell
grep rough audit - source code auditing tool
2 years ago4January 21, 20219mitPython
🔥 A powerful MongoDB auditing and pentesting tool 🔥
Elasticsearch Readonlyrest Plugin943
a day ago34June 25, 20229gpl-3.0Scala
Free Elasticsearch security plugin and Kibana security plugin: super-easy Kibana multi-tenancy, Encryption, Authentication, Authorization, Auditing
4 years ago1mitPython
A Suite of Tools written in Python for wireless auditing and security testing.
Event Forwarding Guidance563
2 years ago9otherPowerShell
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
Alternatives To Fastaudit
Select To Compare

Alternative Project Comparisons
A simple and minimal wordpress security auditor!
Audit your wordpress application for security issues with even 1 request.

GPLv3 license version Known Vulnerabilities

FastAudit is a simple wordpress enumeration tool and security auditor, able to detect possible security issues with even one web-request.

It is inspired by the amazing WPScan tool and is of course powered by the WPScan Vulnerability Database to identify possible plugin/theme/wpVersion-related vulnerabilities. It performs basic enumeration based on classic techniques and It's nice to use for a fast scan to enumerate the basics. What is special about this tool is that in order to identify possible vulnerabilities (using -ep option), it makes only one web-request to the application, so it doesn't slow it down in any way and doesn't mess with its functionality.

This tool is only for enumeration and not for exploitation - so it doesn't perform any kind of brute-force attack or any other attack in general. This tool can be used by developers and security engineers to scan their wordpress applications for possible vulberabilities (e.g. old plugins etc...) and fix them as soon as possible - that's all!


  • enumerates wp-version/theme/users/plugins
  • based on the aboved results uses WPScan Vulnerability Database to search for potential vulnerabilities
  • utilizes shodan-API to search for additional vulnerabilities (shodan account required for this feature, may also give false positives sometimes)
  • utilizes haveibeenpwned service to search if a password (in sha1) has been used/breached before (useful for developers to test their passwords).


Note: To install the requirements:

pip install -r requirements.txt --upgrade --user


For the shodan and/or proxy to work, you have to set the appropriate values on config.cfg. Also even if --useragent options is provided, requests to haveibeenpwned service will be made using FastAudit_Agent as user-agent.


  • [ ] integrate zoomeye search also

Contributions & Feedback

Feedback and contributions are welcome. If you find any bug or have a feature request feel free to open an issue, and as soon as I review it I'll try to fix it!


This tool is only for testing and academic purposes and can only be used where strict consent has been given. Do not use it for illegal purposes! It is the end user’s responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this tool and software in general.




This project is licensed under the GPLv3 License - see the LICENSE file for details

Popular Auditing Projects
Popular Security Projects
Popular Security Categories
Related Searches

Get A Weekly Email With Trending Projects For These Categories
No Spam. Unsubscribe easily at any time.
Penetration Testing