reverse-engineering--binary-analysis

# Reverse Engineering & Binary Analysis ## Purpose Enable Claude to assist with reverse engineering tasks including binary analysis, assembly interpretation, decompilation, firmware reverse engineering, and protocol analysis. Claude directly reads and interprets disassembled code, identifies patterns, reconstructs logic, and helps navigate complex binaries using RE tool output. --- ## Activation Triggers This skill activates when the user asks about: - Analyzing an ELF, PE (exe/dll), Mach-O, or raw binary - Interpreting x86, x64, ARM, MIPS, or RISC-V assembly code - Reverse engineering firmware from embedded/IoT devices - Reverse engineering a network protocol - Using Ghidra, IDA Pro, radare2, or Binary Ninja output - Identifying what a binary or function does - Finding vulnerabilities in disassembly - CTF binary challenges (pwn, reversing categories) - Anti-debugging or anti-analysis technique identification - Unpacking or deobfuscating binaries --- ## Prerequisites ```bash pip install capstone pyelftools pefile lief ``` **Recommended RE tools:** - `Ghidra` — NSA open-source RE framework (free) - `radare2` / `Cutter` — Open-source RE framework - `Binary Ninja` — Commercial RE platform with scripting - `IDA Pro / Free` — Industry standard disassembler - `GDB + GEF/PEDA/pwndbg` — Dynamic debugging - `Binwalk` — Firmware extraction and analysis - `strings, file, objdump, readelf` — Standard Linux utilities --- ## Core Capabilities ### 1. Initial Binary Triage **Whe...