Stats
Actions
Tags
From drbinary-chat-plugin
Queries the Android/AOSP kernel CVE database to look up CVEs, find vulnerabilities by kernel version or build date, check if a branch is patched, and identify exploitable bugs.
How this skill is triggered — by the user, by Claude, or both
Slash command
/drbinary-chat-plugin:kernel-cve-analysisThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
This skill queries the remote Dr. Binary MCP server's Android/AOSP kernel CVE database. It helps determine which kernel vulnerabilities affect a given version, build date, or branch — and which are actually exploitable (bug-inducing code present *and* fix absent).
This skill queries the remote Dr. Binary MCP server's Android/AOSP kernel CVE database. It helps determine which kernel vulnerabilities affect a given version, build date, or branch — and which are actually exploitable (bug-inducing code present and fix absent).
Use this skill when the user wants to:
| Tool | Use it when… | Arguments |
|---|---|---|
get_cve_info | The user names a specific CVE | cve_id (e.g. "CVE-2024-12345") |
query_cves_by_version | "Which CVEs affect kernel <version>?" | aosp_version, limit? (default 100) |
query_cves_by_date | "Which CVEs affect a kernel built on <date>?" | commit_date, limit? (default 100) |
query_cves_by_branch | "Which CVEs are unpatched in <branch>?" | branch, limit? (default 100) |
find_exploitable_cves | "Which CVEs are exploitable in <branch> as of <date>?" | commit_date, branch, limit? (default 50) |
list_all_cves | "Show me the CVEs in the database" | limit? (default 100) |
get_cve_info — returns a formatted report with type, severity, subcomponent, fixed-in version, affected version ranges, fix commits, and bug-inducing commits.query_cves_by_version — all CVEs affecting a specific AOSP kernel version (e.g. 5.10, 5.15).query_cves_by_date — CVEs affecting a kernel built at a specific commit date.query_cves_by_branch — unpatched CVEs in a branch (fixes not yet present in that branch).find_exploitable_cves — the flagship query: vulnerabilities present in a branch at a specific time where both the bug-inducing code exists and the fix is absent. Requires both commit_date and branch.list_all_cves — enumerate the database with basic info.find_exploitable_cves.get_cve_info when the user wants details on a specific result.When reporting results, prefer a concise table (CVE id, severity, subcomponent, affected range / patch status) followed by a short narrative for the most important findings, and call out any exploitable CVEs explicitly.
npx claudepluginhub deepbitstechnology/claude-plugins --plugin drbinary-chat-pluginResearches a CVE or vulnerability disclosure end-to-end: affected versions, reachability in your code, public PoC availability, patch status, exposure window, and mitigation guidance. Use for CVE, zero-day, EPSS, or patch triage.
Orchestrates CVE vulnerability testing: identifies tech stacks, researches known CVEs, adapts PoCs, and validates exploits against applications. Use for assessing dependencies, frameworks, and libraries.
Mines GitHub Security Advisories and NVD CVE databases for incomplete fixes, identifying variant vulnerabilities in patched code and similar patterns in related packages. Useful for high-acceptance-rate security findings.