# WPScan > security scanner for WordPress **Wikidata**: [Q109556678](https://www.wikidata.org/wiki/Q109556678) **Source**: https://4ort.xyz/entity/wpscan ## Summary WPScan is a free security scanner designed to identify vulnerabilities in WordPress installations, supporting Linux, Windows, macOS, and Unix-like systems. Developed by Ryan Dewhurst and Christian Mehlmauer, it helps users audit and secure their WordPress sites. ## Key Facts - **Inception**: 2011 - **Developers**: Ryan Dewhurst and Christian Mehlmauer - **License**: Multi-licensing (proprietary and public-domain-equivalent) - **Supported OS**: Linux, Microsoft Windows, macOS, Unix-like systems - **Latest Version**: 3.8.20 (released November 8, 2021) - **Repository**: Hosted on GitHub at [https://github.com/wpscanteam/wpscan](https://github.com/wpscanteam/wpscan) ## FAQs ### Q: What is WPScan used for? A: WPScan is used to detect security vulnerabilities, misconfigurations, and exposed sensitive data in WordPress installations, helping users strengthen their site security. ### Q: Is WPScan free to use? A: Yes, WPScan is free software released under a public-domain-equivalent license, though it also incorporates proprietary licensing for certain components. ### Q: Which operating systems does WPScan support? A: WPScan runs on Linux, Microsoft Windows, macOS, and other Unix-like operating systems. ## Why It Matters WPScan plays a critical role in WordPress security by enabling users to proactively identify and remediate vulnerabilities. Given WordPress’s dominance in web development (powering over 40% of websites globally), WPScan addresses a widespread need for specialized security tools. Its cross-platform compatibility and free licensing model make it accessible to developers, administrators, and security professionals worldwide. By streamlining vulnerability detection, WPScan helps mitigate risks such as unauthorized access, data breaches, and malware infections, thereby safeguarding the integrity of millions of WordPress sites. ## Notable For - **WordPress-Specific Focus**: Tailored exclusively for WordPress, ensuring relevance to its ecosystem. - **Multi-OS Support**: Compatible with major operating systems, enhancing usability across diverse environments. - **Public-Domain Licensing**: Core components are freely usable and modifiable, fostering community collaboration. - **Integration with Security Tools**: Included in penetration testing distributions like Kali Linux, affirming its credibility. ## Body ### Development - **Initial Release**: 2011 - **Founders**: Ryan Dewhurst and Christian Mehlmauer - **Active Maintenance**: Regular updates (e.g., version 3.8.20 in 2021) reflect ongoing development. ### Features - **Vulnerability Detection**: Identifies outdated software, misconfigurations, and exploitable plugins/themes. - **Enumeration Capabilities**: Discovers usernames, plugins, themes, and database details exposed to attackers. - **Cross-Platform Compatibility**: Functions on Linux, Windows, macOS, and Unix-like systems. ### Licensing - **Dual Model**: Combines a public-domain-equivalent license (for free use) with proprietary licensing for specific features. - **GitHub Repository**: Source code hosted at [https://github.com/wpscanteam/wpscan](https://github.com/wpscanteam/wpscan) under the license outlined in the `LICENSE` file. ### Availability - **Download/Use**: Accessible via the official website ([https://wpscan.com](https://wpscan.com)) and GitHub. - **Documentation**: User manual available at [https://github.com/wpscanteam/wpscan/wiki](https://github.com/wpscanteam/wpscan/wiki). ## Schema Markup ```json { "@context": "https://schema.org", "@type": "Thing", "name": "WPScan", "description": "Security scanner for WordPress", "url": "https://wpscan.com/wordpress-security-scanner", "additionalType": "SoftwareApplication" } ## References 1. [Source](https://wpscan.com/about) 2. [2025](https://github.com/EvanLi/Github-Ranking/blob/master/Data/github-ranking-2025-07-06.csv) 3. [Releaseliste. 2021](https://github.com/wpscanteam/wpscan/releases) 4. [Release 2.8. 2015](https://github.com/wpscanteam/wpscan/releases/tag/2.8) 5. [Release 2.9. 2015](https://github.com/wpscanteam/wpscan/releases/tag/2.9) 6. [Release 2.9.1. 2016](https://github.com/wpscanteam/wpscan/releases/tag/2.9.1) 7. [Release 2.9.2. 2016](https://github.com/wpscanteam/wpscan/releases/tag/2.9.2) 8. [Release 2.9.3. 2017](https://github.com/wpscanteam/wpscan/releases/tag/2.9.3) 9. [Release 2.9.4. 2018](https://github.com/wpscanteam/wpscan/releases/tag/2.9.4) 10. [Release 3.3.0. 2018](https://github.com/wpscanteam/wpscan/releases/tag/3.3.0) 11. [Release 3.3.1. 2018](https://github.com/wpscanteam/wpscan/releases/tag/v3.3.1) 12. [Release 3.3.2. 2018](https://github.com/wpscanteam/wpscan/releases/tag/v3.3.2) 13. [Release 3.3.3. 2018](https://github.com/wpscanteam/wpscan/releases/tag/v3.3.3) 14. [Release 3.4.0. 2018](https://github.com/wpscanteam/wpscan/releases/tag/v3.4.0) 15. [Release 3.4.1. 2018](https://github.com/wpscanteam/wpscan/releases/tag/v3.4.1) 16. [Release 3.4.3. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.4.3) 17. [Release 3.4.4. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.4.4) 18. [Release 3.4.5. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.4.5) 19. [Release 3.5.0. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.5.0) 20. [Release 3.5.1. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.5.1) 21. [Release 3.5.2. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.5.2) 22. [Release 3.5.3. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.5.3) 23. [Release 3.5.4. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.5.4) 24. [Release 3.5.5. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.5.5) 25. [Release 3.6.0. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.6.0) 26. [Release 3.6.1. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.6.1) 27. [Release 3.6.2. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.6.2) 28. [Release 3.6.3. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.6.3) 29. [Release 3.7.0. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.0) 30. [Release 3.7.1. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.1) 31. [Release 3.7.2. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.2) 32. [Release 3.7.3. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.3) 33. [Release 3.7.4. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.4) 34. [Release 3.7.5. 2019](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.5) 35. [Release 3.7.6. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.6) 36. [Release 3.7.7. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.7) 37. [Release 3.7.8. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.8) 38. [Release 3.7.9. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.9) 39. [Release 3.7.10. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.10) 40. [Release 3.7.11. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.7.11) 41. [Release 3.8.0. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.0) 42. [Release 3.8.1. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.1) 43. [Release 3.8.2. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.2) 44. [Release 3.8.3. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.3) 45. [Release 3.8.4. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.4) 46. [Release 3.8.5. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.5) 47. [Release 3.8.6. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.6) 48. [Release 3.8.7. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.7) 49. [Release 3.8.8. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.8) 50. [Release 3.8.9. 2020](https://github.com/wpscanteam/wpscan/releases/tag/v3.8.9)