Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
What is the name of the cookie used for authentication? Given the URL "http://shibes.xyz/api.php", what would the entire wfuzz command look like to query the "breed ...
description = "A loader for the CobaltStrike malware family, which ultimately takes the first and second bytes of an embedded file, and flips them prior to executing the resulting payload." ...