aeondave/strings
offensive-tools/rev/strings/SKILL.md
Auth/lab ref: printable-string extractor for binaries, libraries, firmware blobs, and files of unknown type.
$ install --global
skillsauthnpx skillsauth add aeondave/malskill stringsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 8, 2026, 4:06 AM308.4s1 file scanned
SKILL.md
- name:
- strings
- description:
- Auth/lab ref: printable-string extractor for binaries, libraries, firmware blobs, and files of unknown type.
- compatibility:
- Linux, macOS, WSL; GNU binutils or BSD variant available on most systems.
- author:
- AeonDave
- version:
- 1.0
strings
The fastest first question in reversing is often: what human text escaped alive?
When to use strings
Use strings when you need to:
- surface URLs, domains, file paths, and command lines quickly
- hunt for flags, prompts, keys, or configuration fragments
- identify a binary's language/runtime from embedded banners
- find likely function names or imported library references in stripped samples
Quick Start
# Default printable-string extraction
strings ./sample.bin
# Show offsets in hex
strings -t x ./sample.bin
# Require longer strings to reduce noise
strings -n 8 ./sample.bin
High-Value Workflows
Focused triage
strings -a -n 6 ./sample.bin | grep -iE "flag|http|token|password|/bin/|cmd.exe"
strings -a -t x ./sample.bin | grep -i libc
Wide or alternate encodings
strings -a -e l ./sample.bin
strings -a -e b ./sample.bin
Batch file-origin context
strings -f -a *.so
Practical Notes
-ais a safer default when you want to scan the whole file, not only data sections.- Pair offsets from
-t xwithobjdump,gdb, or a GUI disassembler for contextual follow-up. - Try both regular and wide-string modes on Windows or Android artifacts.
Caveats
- Missing strings do not imply missing capability; malware and packed binaries hide text all the time.
stringscan produce seductive nonsense on compressed or encrypted data.- Use it as a lead generator, not as final evidence.
Resources
No bundled scripts/, references/, or assets/.
Use the platform man strings page for encoding flags and variant-specific behavior.
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026