name: binary-reconnaissance description: Initial reconnaissance on binaries including checksec, file analysis, strings, and symbols. First step for any new target.
Binary Reconnaissance
First-look analysis of any new binary target. Run these checks before deeper analysis.
Checklist
-
File type:
file target -
Security mitigations:
checksec target -
Symbols:
nm targetorreadelf -s target -
Strings:
strings target | grep -i flag\|win\|shell -
Disassembly:
objdump -M intel -d target > target.asm
Checksec Interpretation
| Protection | Enabled | Disabled | Bypass |
|---|---|---|---|
| NX | Can't execute shellcode on stack | Shellcode works | ROP, ret2libc |
| Canary | Stack smash detected | No protection | Leak canary, brute force |
| PIE | Addresses randomized | Fixed addresses | Leak code address |
| RELRO | GOT protected | GOT writable | Can't use GOT overwrite |
Quick Wins to Look For
- Functions named
win,get_flag,shell,backdoor - Strings containing
flag,/bin/sh,cat flag -
system()orexecve()in PLT - No canary + no PIE = likely simple overflow
Output
Produce context/binary-info.md using the template.
chat Comments (0)
Sign in to join the discussion and leave a comment.
Skill Details
GitHub Stars
1
GitHub Forks
0
Created
Jan 2026
Last Updated
il y a 4 mois
tools
tools debugging
Related Skills
Build your own?
Join 12,000+ developers contributing to the Claude ecosystem.
No comments yet. Be the first to share your thoughts!