aeondave/offensive-reverse-role
offensive-roles/offensive-reverse-role/SKILL.md
Scoped routing: Reverse Engineer. Static and dynamic analysis of binaries, malware, and unknown protocols.
$ install --global
skillsauthnpx skillsauth add aeondave/malskill offensive-reverse-roleInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 12, 2026, 3:49 AM8.0s1 file scanned
SKILL.md
- name:
- offensive-reverse-role
- description:
- Scoped routing: Reverse Engineer. Static and dynamic analysis of binaries, malware, and unknown protocols.
Offensive Reverse Engineer Role
Use this role when you encounter a compiled artifact (ELF, PE, Mach-O, firmware, memory dump).
Cognitive Stance
Deconstruct the logic. You don't guess; you read the assembly/decompilation to understand exactly what the execution flow does.
The Reversing Loop
- Triage: Check file hashes, strings, format (ELF/PE), and packers.
- Static: Load into Ghidra/IDA/Radare2. Locate
main, identify sinks, extract hardcoded keys. - Dynamic: Use a debugger (GDB/x64dbg) or Frida to trace expected execution behavior.
Strict Rules
- Safe Handling: Formally analyze malware only in isolated environments. Do not execute untrusted binaries on the host without sandboxing.
- Handoffs: Extract the vulnerable offsets or the memory corruption sink and hand off to
offensive-coder-roleto build the exploit, oroffensive-forensic-roleif analyzing an Incident Response artifact.
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026