IIS: The FastCGI process exited unexpectedly (HTTP Error 500.0)

There’s a fairly good chance you’re missing the correct VC++ runtime for the version of PHP you’re running.

If you’re running PHP 5.5.x you need to ensure the VC++11 runtime is installed:

http://www.microsoft.com/en-us/download/details.aspx?id=30679

Make sure you download and install the x86 version (vcredist_x86.exe), PHP on Windows isn’t 64 bit yet.

If you’re running PHP 5.4.x then you need to install the VC++9 runtime:

http://www.microsoft.com/en-us/download/details.aspx?id=5582

 

How to run WPScan on Windows

I test it on windows 8.1 and its work. Step by step mission:

Install WPScan

Download from http://wpscan.org/
Extract anywhere

Install ruby and rubysdk with rubyinstaller:

Download from http://rubyinstaller.org/downloads/
Run rubyinstaller-2.2.4.exe and DevKit-mingw64-32-4.7.2-20130224-1151-sfx.exe
Open command prompt and cd to devkit folder
Run ruby dk.rb init and ruby dk.rb install

Download curl win32 DLL from http://www.paehl.com/open_source/?CURL_7.48.0 (Download libcurl.dll (all versions) only)
Extract 7z file, and copy libcurl.dll from SSL dir to c:\ruby22\bin directory

Config ruby to run WPScan

Open command prompot and cd to WPScan folder
Install requied ruby gems:
gem install bundler
gem install typhoeus
gem install rspec-its
gem install ruby-progressbar
gem install nokogiri
gem install terminal-table
gem install webmock
gem install simplecov
gem install rspec
gem install xml-simple
gem install bundler && bundle install --without test

Run WPScan

ruby wpscan.rb

IP /24 Range Regular Expression

Example: 192.168.15.0/24

Range: 192.168.15.1 – 192.168.15.254

Regexp: ^192\.168\.15\.([1-9]|[1-9][0-9]|1([0-9][0-9])|2([0-4][0-9]|5[0-4]))$

Check:

  • ^ assert position at start of the string
  • 192 matches the characters 192 literally
  • \. matches the character . literally
  • 168 matches the characters 168 literally
  • \. matches the character . literally
  • 15 matches the characters 15 literally
  • \. matches the character . literally
  •  1st Capturing group ([1-9]|[1-9][0-9]|1([0-9][0-9])|2([0-4][0-9]|5[0-4]))
    • 1st Alternative: [1-9]
      • [1-9] match a single character present in the list below
        • 1-9 a single character in the range between 1 and 9
    •  2nd Alternative: [1-9][0-9]
      • [1-9] match a single character present in the list below
        • 1-9 a single character in the range between 1 and 9
      • [0-9] match a single character present in the list below
        • 0-9 a single character in the range between 0 and 9
    •  3rd Alternative: 1([0-9][0-9])
      • 1 matches the character 1 literally
      • 2nd Capturing group ([0-9][0-9])
        • [0-9] match a single character present in the list below
          • 0-9 a single character in the range between 0 and 9
        • [0-9] match a single character present in the list below
          • 0-9 a single character in the range between 0 and 9
    •  4th Alternative: 2([0-4][0-9]|5[0-4])
      • 2 matches the character 2 literally
      • 3rd Capturing group ([0-4][0-9]|5[0-4])
        • 1st Alternative: [0-4][0-9]
          • [0-4] match a single character present in the list below
            • 0-4 a single character in the range between 0 and 4
          • [0-9] match a single character present in the list below
            • 0-9 a single character in the range between 0 and 9
        •  2nd Alternative: 5[0-4]
          • 5 matches the character 5 literally
          • [0-4] match a single character present in the list below
            • 0-4 a single character in the range between 0 and 4
  • $ assert position at end of the string