Droopescan
An open source tool that is used industry-wide by security researchers
Droopescan started as a passion project by one of our founders. It was made to aid security researchers find outdated versions of CMS.
OWASP NZ 2015 Conference Presentation
Droopescan is a Python program that, using several heuristic techniques, identifies characteristics about specific CMS installations. For example, it is able to determine which version is installed, as well as what plugins are included in the installation. It is currently one of the most popular tools for performing this kind of security checks, and has been reported on by several industry sites, such as these below:
On darknet.org
On Cloud Academy
The power of open source
Since Droopescan was first released in 2014 it has been maintained and expanded by the community, growing to be an industry standard for CMS scanning.
With over 700 stars and 200 forks on GitHub, as well as several hundred downloads and clones each day, it has proven to be stable and fast for Droopescan’s users’ needs.