Search everything...

Stats

Actions

Available In

binary-re

Name: binary-re
Author: 2389-research

By 2389-research

Reverse engineer ELF binaries on ARM64, ARMv7, and x86_64 via automated static analysis with radare2 and Ghidra, dynamic tracing using QEMU emulation, GDB debugging, Frida hooking, and strace syscalls, fast fingerprinting for architecture and dependencies, tool setup on Linux/macOS/WSL, and structured reporting with evidence chains.

npx claudepluginhub 2389-research/claude-plugins --plugin binary-re

Popularity

Stars

Top 25%

Med: 0·Avg: 285

Installs

Top 10%

Med: 0·Avg: 1

What's Inside

Skills5

binary-re:dynamic-analysis

/dynamic-analysis

Use when you need to run a binary, trace execution, or observe runtime behavior. Runtime analysis via QEMU emulation, GDB debugging, and Frida hooking - syscall tracing (strace), breakpoints, memory inspection, function interception. Keywords - "run binary", "execute", "debug", "trace syscalls", "set breakpoint", "qemu", "gdb", "frida", "strace", "watch memory"

binary-re:static-analysis

/static-analysis

Use when analyzing binary structure, disassembling code, or decompiling functions. Deep static analysis via radare2 (r2) and Ghidra headless - function enumeration, cross-references (xrefs), decompilation, control flow graphs. Keywords - "disassemble", "decompile", "what does this function do", "find functions", "analyze code", "r2", "ghidra", "pdg", "afl"

binary-re:synthesis

/synthesis

Use when ready to document findings, generate a report, or summarize binary analysis results. Compiles analysis findings into structured reports - correlates facts from triage/static/dynamic phases, validates hypotheses, generates documentation with evidence chains. Keywords - "summarize findings", "generate report", "document analysis", "what did we find", "write up results", "export findings"

binary-re:tool-setup

/tool-setup

Use when reverse engineering tools are missing, not working, or need configuration. Installation guides for radare2 (r2), Ghidra, GDB, QEMU, Frida, binutils, and cross-compilation toolchains. Keywords - "install radare2", "setup ghidra", "r2 not found", "qemu missing", "tool not installed", "configure gdb", "cross-compiler"

binary-re:triage

/triage

Use when first encountering an unknown binary, ELF file, executable, or firmware blob. Fast fingerprinting via rabin2 - architecture detection (ARM, x86, MIPS), ABI identification, dependency mapping, string extraction. Keywords - "what is this binary", "identify architecture", "check file type", "rabin2", "file analysis", "quick scan"

Stats

Version1.0.0

Stars6

Forks2

Copy clicks1

MaintenanceExcellent

LicenseMIT

Last CommitApr 7, 2026

AddedApr 3, 2026

Actions

View on GitHub View README Plugin Marketplace JSON

Own this plugin?

Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).

Available In

2389-research73

README

Binary Reverse Engineering Plugin

You pulled a binary off an embedded device. It's an ELF, probably ARM, and you need to figure out what it does. Binary RE gives Claude the tools to help — radare2 for disassembly, Ghidra for decompilation, GDB for dynamic analysis, QEMU for emulation — driven by hypothesis-testing, not blind exploration.

Installation

/plugin marketplace add 2389-research/claude-plugins
/plugin install binary-re@2389-research

What this plugin provides

Skills

binary-re -- structured RE workflow with hypothesis-driven analysis

Capabilities

Cross-architecture static analysis (ARM64, ARMv7, x86_64, MIPS)
Dynamic tracing via QEMU user-mode emulation
GDB integration for debugging
Ghidra headless decompilation
Human-in-the-loop gates for risky operations

Quick example

User: "Analyze this binary from an IoT device - ARM, Linux-based"

Claude: [Triggers binary-re skill]

Let me start with triage to understand what we're working with.

Phase 1: Initial Triage
┌─────────────────────────────────────────┐
│ Architecture: ARM 32-bit LE (v7)        │
│ Libc: musl 1.2.3                        │
│ Dependencies: libcurl, libssl, libz     │
│ Stripped: Yes                           │
│ Strings: 847 (including URLs, paths)    │
└─────────────────────────────────────────┘

FACTS recorded:
- Links against libcurl.so.4 (network client)
- Contains string "api.vendor.com/telemetry"
- Imports socket, connect, SSL_read functions

HYPOTHESIS: This is a telemetry client that phones home over HTTPS
Confidence: 0.7
Evidence: curl+ssl imports, telemetry URL string

Do you want me to proceed with static analysis of network-related
functions, or should we try dynamic analysis under QEMU first?

Tool requirements

# Required
sudo apt install radare2 qemu-user gdb-multiarch

# Recommended
# Ghidra from https://ghidra-sre.org/
pip install frida-tools

# ARM sysroots
sudo apt install libc6-armhf-cross libc6-arm64-cross

Use cases

Firmware analysis -- understand device behavior without source
Protocol reverse engineering -- map network communications
Security research -- find vulnerabilities in embedded systems
Hardware hacking -- analyze robot/IoT device internals

Philosophy

The LLM drives analysis; the human provides context.

You tell Claude what platform/device the binary came from, what hardware is involved, what the binary is theorized to do, and any constraints (no network, isolated test env, etc).

Claude runs the tools, forms hypotheses from evidence, designs experiments to test theories, and synthesizes findings into something actionable.

Human-in-the-loop

The skill asks for confirmation before:

Executing binaries (even sandboxed)
Network-capable dynamic analysis
Operations requiring device access
Major changes in analysis direction

Documentation

CLAUDE.md -- detailed skill reference
skills/SKILL.md -- full workflow documentation

If Binary RE helped you crack a firmware blob, a ⭐ helps us know it's landing.

Built by 2389 · Part of the Claude Code plugin marketplace

Similar Plugins

fullstack-dev-skills

10.0k·455·

Comprehensive skill pack with 66 specialized skills for full-stack developers: 12 language experts (Python, TypeScript, Go, Rust, C++, Swift, Kotlin, C#, PHP, Java, SQL, JavaScript), 10 backend frameworks, 6 frontend/mobile, plus infrastructure, DevOps, security, and testing. Features progressive disclosure architecture for 50% faster loading.

v0.4.15

Jeffallan

nature-skills

20.0k·124·

A growing collection of Claude-compatible academic workflow bundles. Covers scientific figures, manuscript writing and polishing, reviewer assessment, citation retrieval, data availability, paper reading, literature search, response letters, paper-to-PPTX conversion, and evidence-grounded Chinese invention patent drafting. Rules are organized as reusable skill folders with explicit workflows and quality checks.

v1.0.0

Yuan1z0825

creative-writing

28·58·

Complete creative writing suite with 10 specialized agents covering the full writing process: research gathering, character development, story architecture, world-building, dialogue coaching, editing/review, outlining, content strategy, believability auditing, and prose style/voice analysis. Includes genre-specific guides, templates, and quality checklists.

4mo

v1.7.0

greyhaven-ai

ui-ux-pro-max

90.2k·1.3K·

UI/UX design intelligence. 67 styles, 161 palettes, 57 font pairings, 25 charts, 15 stacks (React, Next.js, Vue, Svelte, Astro, SwiftUI, React Native, Flutter, Tailwind, shadcn/ui, Nuxt, Jetpack Compose). Actions: plan, build, create, design, implement, review, fix, improve, optimize, enhance, refactor, check UI/UX code. Projects: website, landing page, dashboard, admin panel, e-commerce, SaaS, portfolio, blog, mobile app. Elements: button, modal, navbar, sidebar, card, table, form, chart. Styles: glassmorphism, claymorphism, minimalism, brutalism, neumorphism, bento grid, dark mode, responsive, skeuomorphism, flat design. Topics: color palette, accessibility, animation, layout, typography, font pairing, spacing, hover, shadow, gradient.

2mo

v2.5.0

nextlevelbuilder

brainstorming-skill

45·410·

This skill should be used when users need to generate ideas, explore creative solutions, or systematically brainstorm approaches to problems. Use when users request help with ideation, content planning, product features, marketing campaigns, strategic planning, creative writing, or any task requiring structured idea generation. The skill provides 30+ research-validated prompt patterns across 14 categories with exact templates, success metrics, and domain-specific applications.

3mo

v1.1.7

Jamie-BitFlight

godot-skills

30·328·

Develop, test, build, and deploy Godot 4.x games with Claude Code. Includes GdUnit4 testing, web/desktop exports, CI/CD pipelines, and deployment to Vercel/GitHub Pages/itch.io.

5mo

v1.0.0

Randroids-Dojo

binary-re

Popularity

What's Inside

Confidence

README

Binary Reverse Engineering Plugin

Installation

What this plugin provides

Skills

Capabilities

Quick example

Tool requirements

Use cases

Philosophy

Human-in-the-loop

Documentation

Similar Plugins

fullstack-dev-skills

nature-skills

creative-writing

ui-ux-pro-max

brainstorming-skill

godot-skills

More by 2389-research

mcp-agent-social

simmer

agent-drugs

review-squad

thrifty

Binary Reverse Engineering Plugin

Installation

What this plugin provides

Skills

Capabilities

Quick example

Tool requirements

Use cases

Philosophy

Human-in-the-loop

Documentation

Popularity

Health & Quality

More by 2389-research

mcp-agent-social

simmer

agent-drugs

review-squad

thrifty

Similar Plugins

fullstack-dev-skills

nature-skills

creative-writing

ui-ux-pro-max

brainstorming-skill

godot-skills