WpShellUploader v2.0.0

WpShellUploader v2.0.0

WordPress penetration testing tool — 9 upload vectors with adaptive AIMD threading.

Requirements / Requisitos

• Windows 10/11 (64-bit)
• .NET 6 Desktop Runtime — required / requerido

Installation / Instalación

1. Download WpShellUploader-v2.0.0-windows-x64.zip
2. Extract to any folder / Extraer en cualquier carpeta
3. Run WpShellUploader.exe

Critical / Crítico: The Files/ directory must stay in the same folder as the executable.

What's Included / Contenido

• WpShellUploader.exe — Main executable / Ejecutable principal
• Files/ — Payload directory (plugin.zip, theme.zip, index.php)
• All required .NET DLLs / Todas las DLLs requeridas de .NET

Features / Características

• 9 upload methods: plugin upload, theme upload, theme editor, plugin editor, REST API, File Manager, AJAX, XML-RPC, direct PUT
• Multi-format input: hash (#), pipe (|), em-dash (–), colon (:) credential formats
• Adaptive AIMD threading: auto-scales 1–500 threads based on CPU/RAM/performance
• Role detection: Administrator / Editor / Author
• Shell verification: confirms execution via marker string check
• 15+ result files organized by role and upload method
• Real-time dashboard: speed, success rate, thread count, elapsed time
• Dark theme WPF GUI

Legal Notice / Aviso Legal

For authorized security testing only. Use against systems you do not own or have explicit written permission to test is illegal. See README for full disclaimer.