Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
The theory/ folder contains security research documentation including descriptions of offensive techniques and tool syntax. Some files may trigger antivirus false positives on Windows systems.
A reverse shell gives an attacker interactive command-line access to a compromised machine by making the target reach out first. Instead of the attacker connecting inward to a listening port on the ...