# Basic scan
wpscan --url https:
# Enumerate users
wpscan --url https:
# Enumerate plugins
wpscan --url https:
# Enumerate themes
wpscan --url https:
# Enumerate vulnerable plugins
wpscan --url https:
# Enumerate vulnerable themes
wpscan --url https:
# Enumerate all (users, plugins, themes)
wpscan --url https:
# Use a specific User-Agent
wpscan --url https:
# Follow redirection
wpscan --url https:
# Set a proxy
wpscan --url https:
# Set a proxy with authentication
wpscan --url https:
# Use a specific WP content directory
wpscan --url https:
# Disable TLS checks (useful for self-signed certificates)
wpscan --url https:
# Password brute force attack (replace 'passwords.txt' with your wordlist)
wpscan --url https:
# Update the WPScan database
wpscan --update
# Get help
wpscan --help