WordPress Penetration Testing

This SKILL.md is a comprehensive and operationally detailed WordPress penetration testing guide that includes explicit, copy-paste exploitation payloads (PHP webshell, bash reverse shell), plugin/theme backdoor instructions, XML-RPC multicall brute-force examples, and guidance for evasion (proxy/Tor, disabling TLS checks). There is no sign of obfuscated or covertly malicious code embedded in the file itself, nor evidence of third-party exfiltration services, but the content directly enables unauthorized compromise if used without explicit written authorization. Treat as high-risk offensive content: restrict distribution, require proof of authorization and operational safeguards, and consider removing or gating directly runnable reverse-shell/webshell snippets from versions accessible to untrusted users.