OWASP wpBullet is an opensource software that was developed for identifying security vulnerabilities in WordPress plugins and themes. It was built following flexible patterns to allow maximum flexibility and ease of creating new detection rules. Beside analyzing source code for vulnerabilities, this tool will also map all exposed hooks which give a researcher a good starting point where to look for flaws.
This program is free software: you can redistribute it and/or modify it under the terms of the link GNU Affero General Public License 2.0 as published by the Free Software Foundation, either version 2 of the License, or (at your option) any later version. Copyright © by Luka Sikic 2019.
As of July, 2019, the highest priorities for the next 6 months are:
You can contribute to the project on GitHub repository. If you have any questions feel free to reach out at luka [ at ] sikic.eu