Can this skill detect issues in both C and C++?

Yes, it is designed to analyze both C-style free() operations and C++-style delete/delete[] calls to ensure consistency across memory management paradigms.

Does it identify stack memory errors?

Yes, the skill traces pointer origins to identify when non-heap memory, such as stack variables, static globals, or string literals, is incorrectly passed to deallocation functions.

Can it identify exploitable vulnerabilities?

Yes, the skill assesses the impact of incorrect deallocations, determining if they could lead to heap corruption or provide an attack vector for exploitation.

How does it handle mismatched allocators?

It maps deallocation points back to the original allocation method, flagging errors if free() is used on new-allocated memory or if delete is used on malloc-allocated memory.

Memory Deallocation & Free Safety Auditor

Name: Memory Deallocation & Free Safety Auditor
Author: waiwai24

bywaiwai24

•

セキュリティとテスト

Detects and analyzes improper memory deallocation patterns including mismatched allocators, double frees, and invalid pointer usage in C/C++ code.

This skill empowers Claude to perform deep static analysis of C and C++ memory management, specifically focusing on the lifecycle of free() and delete operations. It identifies critical vulnerabilities such as freeing stack variables, mismatched allocation/deallocation pairs, and potential heap corruption scenarios. By tracing pointer origins and assessing the security impact of invalid deallocations, it helps developers prevent crashes and exploitable memory bugs, providing clear mitigation strategies for identified memory safety issues.

主な機能

01Assess security impact and exploitability of detected memory errors

02Trace pointer origins to verify if memory resides on the heap, stack, or static storage

03Generate detailed reports including vulnerability types and mitigation steps

04Detect double-free and use-after-free vulnerabilities in complex code paths

051 GitHub stars

06Identify mismatched allocators like malloc-allocated memory being deleted

ユースケース

01Validating memory management logic during automated code reviews and CI/CD

02Debugging segmentation faults and heap corruption in legacy C/C++ projects

03Performing security audits to find exploitable memory management vulnerabilities

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add waiwai24/binaryx-agent detecting-incorrect-free

For use in Claude.ai and ChatGPT

Download Skill