competition-malware-config
CommunityRecover malware configs and beacon details.
Data & Analytics#sandbox#forensics#malware-analysis#evidence-management#config-recovery#decode-chain
Authorxjtu-wang
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This skill helps security analysts extract and reconstruct hidden malware configuration data, staging layers, and beacon parameters from sandboxed samples after the $ctf-sandbox-orchestrator has established context.
Core Features & Use Cases
- Downstream specialization after $ctf-sandbox-orchestrator is active, enabling recovery of hidden configuration fields, staging payloads, and related artifacts.
- Reconstruct decode chains to map config fields to observed behavior, correlating with PCAPs, process trees, or stage2 strings.
- Tie recovered config fields to behavior such as beacon routes, persistence names, or tasking decisions, facilitating reproducible investigation workflows.
Quick Start
Preserve the original sample before unpacking or patching.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: competition-malware-config Download link: https://github.com/xjtu-wang/DigAgent/archive/main.zip#competition-malware-config Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.