npx claudepluginhub DeepBitsTechnology/claude-pluginsLocal cyber security assistant for PC issue detection, malware analysis, and system scanning
Claude Code marketplace entries for the plugin-safe Antigravity Awesome Skills library and its compatible editorial bundles.
Production-ready workflow orchestration with 79 focused plugins, 184 specialized agents, and 150 skills - optimized for granular installation and minimal token usage
Directory of popular Claude Code extensions including development tools, productivity plugins, and MCP integrations
Share bugs, ideas, or general feedback.
The Plugin equips Claude Code with advanced binary analysis capabilities for tasks such as incident response, malware investigation, and vulnerability assessment. It connects to both cloud-based analysis platforms and local tools via MCP, enabling seamless hybrid workflows. With features including local Windows system scanning, browser hijacking detection, registry and network monitoring, suspicious file analysis, and remote binary analysis through tools like Ghidra, Qilin, and angr, the plugin transforms Claude Code into a powerful AI-assisted workspace for comprehensive system and binary security analysis.
The Claude Code Security Analysis Plugin extends Claude Code with advanced cybersecurity and binary-analysis capabilities, enabling developers and analysts to perform in-depth system investigations directly within their coding environment.
This plugin seamlessly integrates with both cloud-based analysis platforms and local security tools via the Model Context Protocol (MCP), creating a unified workspace for intelligent, AI-assisted security analysis.
Designed for incident response, malware forensics, and vulnerability research, the plugin empowers users to:
🧩 Investigate compromised systems to identify indicators of compromise (IoCs) and attack traces.
🦠 Analyze malware samples to uncover behaviors, persistence methods, and payloads.
🛡️ Perform vulnerability and exploit analysis, including binary diffing, patch validation, and code comparison.
⚙️ Combine cloud automation with local expertise, integrating Deepbits’ agentic binary-analysis capabilities into Claude Code.
Specialized Cybersecurity Capabilities
This plugin provides Claude Code with specialized cybersecurity features, including:
💻 Local Windows system scanning for malware, configuration weaknesses, and security issues.
🌐 Browser hijacking detection to identify malicious extensions or modified settings.
🧮 Windows Registry analysis to reveal persistence mechanisms or misconfigurations.
🧾 Suspicious file detection through behavioral and signature-based analysis.
🔗 Network connection monitoring for unusual or unauthorized communications.
🧠 Remote binary file analysis powered by Ghidra, Qilin, angr, and other advanced analysis frameworks.
Together, these capabilities transform Claude Code into a comprehensive cybersecurity co-pilot—bridging the gap between code intelligence, system defense, and binary analysis.
The Cyber Security Analyst agent provides expert-level security analysis with:
npx -y @drbinary/claude-mcp-server
claude
claude command can be executed from any folder./plugin marketplace add DeepBitsTechnology/claude-plugins
/plugin install drbinary-chat-plugin@DeepBitsTechnology
/mcp
The MCP server will NOT start automatically. You must manually run the following command before starting Claude Code:
npx -y @drbinary/claude-mcp-server
Keep this terminal open while using the plugin, as Claude Code requires the MCP server to be running for binary analysis features.
Binary analysis using disassemblers like Ghidra can take a significant amount of time to complete, especially for large or complex binaries. If you encounter MCP timeout issues during analysis, you should increase the MCP_TOOL_TIMEOUT environment variable.
Recommended setting:
export MCP_TOOL_TIMEOUT=600000