Drupwn is a Python-based Drupal Enumeration Tool that also includes an exploit mode, which can check for and exploit relevant CVEs.
Drupwn Drupal Enumeration Tool Hacking Features
Drupwn can be run, using two separate modes which are enum and exploit. The enum mode allows performing enumerations whereas the exploit mode allows checking and exploiting CVEs.
Enum mode
- User enumeration
- Node enumeration
- Default files enumeration
- Module enumeration
- Theme enumeration
- Cookies support
- User-Agent support
- Basic authentication support
- Request delay
- Enumeration range
- Logging
Exploit mode
- Vulnerability checker
- CVE exploiter
For scanning Drupal sites there is also:
– Droopescan – Plugin Based CMS Security Scanner
You can download Drupwn here:
Or read more here.
Source : DarkNet