I am going to find WordPress Vulnerabilities on my blog with WP scan. WPScan is a black box WordPress Security Scanner written in Ruby which attempts to find known security weaknesses within WordPress installations. Its intended use it to be for security professionals or WordPress administrators to asses the security posture of their WordPress installations. The code base is Open Source and licensed under the GPLv3.
After migrating a WordPress site to a new URL either to a live production or a testing development server, the new URL strings in the mysql database need to be changed and updated in the various mysql database tables.
This method just uses the whole mysql database rather than a WordPress export/import from within, and is best suited for a straight swap. So you would copy all the WordPress files/folders to the new destination, set the correct ownership to those files, then do the database switcheroo.