Which binary architectures are supported?

It supports all architectures provided by Ghidra, including x86 (32/64-bit), ARM/AARCH64, MIPS, and PowerPC. You can explicitly specify the processor ID for custom firmware.

Can this skill identify security vulnerabilities?

The skill includes an 'interesting patterns' export that flags security-relevant functions (like strcpy or gets) and potential hardcoded secrets to assist in manual auditing.

How does this differ from the Ghidra GUI?

This skill uses Ghidra's headless mode for automated data extraction and script execution, making it faster for initial triage and documentation without needing to launch a windowed environment.

Do I need Ghidra installed to use this skill?

Yes, Ghidra and Java (OpenJDK 17+) must be installed on your local machine. The skill automatically searches common installation paths or uses the GHIDRA_HOME environment variable.

Ghidra Headless Analysis

Name: Ghidra Headless Analysis
Author: trailofbits

bytrailofbits

•

253

•

安全与测试

Automates binary reverse engineering and decompilation using Ghidra to extract C code, symbols, and call graphs.

The Ghidra Headless skill enables automated security audits and binary analysis directly within Claude Code. By leveraging Ghidra's powerful analytical engine without the GUI, it allows users to decompile executables into readable C pseudocode, map function call graphs, and extract critical metadata like strings and symbols. This skill is particularly valuable for triaging unknown binaries, reviewing firmware images, and performing security assessments on compiled code when source access is unavailable.

主要功能

01Security-focused pattern matching to identify potentially vulnerable code

02253 GitHub stars

03Automated decompilation of binaries into readable C pseudocode

04Generation of comprehensive function call graphs for control flow analysis

05Multi-architecture support including x86, ARM, MIPS, and PowerPC

06Extraction of function signatures, symbols, and string literals

使用场景

01Security auditing of compiled binaries or firmware without original source code

02Batch analysis of multiple binaries for comparative research or pattern detection

03Automated triage and initial analysis of unknown or suspicious executables

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add trailofbits/skills-curated ghidra-headless

For use in Claude.ai and ChatGPT

Download Skill