Community Plugin

binary-re

Name: binary-re
Rating: 4.2 (23 reviews)
Author: 2389-research

Agentic binary reverse engineering for ELF binaries on ARM64, ARMv7, x86_64 - hypothesis-driven analysis with radare2, Ghidra, GDB, QEMU

1.0.0

Updated 9 days ago

AI Insight

Provides automated binary reverse engineering for ELF files across multiple architectures using tools like radare2 and Ghidra.

Why this plugin

Enables hypothesis-driven analysis of binaries without manual tool switching, ideal for embedded firmware and security research.

Prerequisites

Requires radare2, Ghidra, GDB, and QEMU installed and configured for target architectures.

reverse-engineering

binary-analysis

embedded

Install

Run in your terminal

npx claudepluginhub 2389-research/claude-plugins

Components

Skills

binary-re:dynamic-analysis

inherits

Use when you need to run a binary, trace execution, or observe runtime behavior. Runtime analysis via QEMU emulation, GDB debugging, and Frida hooking - syscall tracing (strace), breakpoints, memory inspection, function interception. Keywords - "run binary", "execute", "debug", "trace syscalls", "set breakpoint", "qemu", "gdb", "frida", "strace", "watch memory"

binary-re:static-analysis

inherits

Use when analyzing binary structure, disassembling code, or decompiling functions. Deep static analysis via radare2 (r2) and Ghidra headless - function enumeration, cross-references (xrefs), decompilation, control flow graphs. Keywords - "disassemble", "decompile", "what does this function do", "find functions", "analyze code", "r2", "ghidra", "pdg", "afl"

binary-re:synthesis

inherits

Use when ready to document findings, generate a report, or summarize binary analysis results. Compiles analysis findings into structured reports - correlates facts from triage/static/dynamic phases, validates hypotheses, generates documentation with evidence chains. Keywords - "summarize findings", "generate report", "document analysis", "what did we find", "write up results", "export findings"

binary-re:tool-setup

inherits

Use when reverse engineering tools are missing, not working, or need configuration. Installation guides for radare2 (r2), Ghidra, GDB, QEMU, Frida, binutils, and cross-compilation toolchains. Keywords - "install radare2", "setup ghidra", "r2 not found", "qemu missing", "tool not installed", "configure gdb", "cross-compiler"

binary-re:triage

inherits

Use when first encountering an unknown binary, ELF file, executable, or firmware blob. Fast fingerprinting via rabin2 - architecture detection (ARM, x86, MIPS), ABI identification, dependency mapping, string extraction. Keywords - "what is this binary", "identify architecture", "check file type", "rabin2", "file analysis", "quick scan"

Stats

Stars23

Forks1

MaintenanceExcellent

Last Commit9 days ago

Community Promotion

Collections

Links

View on GitHub

View README

Plugin Marketplace JSON

Similar Plugins

payload

41.0k

Payload Development plugin - covers collections, fields, hooks, access control, plugins, and database adapters.

2mo

v0.0.1

agent-browser

16.8k

Automates browser interactions for web testing, form filling, screenshots, and data extraction

v0.15.1

planning-with-files

15.5k

Manus-style persistent markdown files for planning, progress tracking, and knowledge storage. Works with Claude Code, Kiro, Clawd CLI, Gemini CLI, Cursor, Continue, and 11+ AI coding assistants.

v2.21.0

voltagent-data-ai

10.9k

Data engineering, ML, and AI specialists - data pipelines, machine learning, LLM architecture

v1.0.1