Agent skill
detecting-buffer-overflows
Detects stack and heap buffer overflow vulnerabilities in binary code by identifying unsafe memory operations. Use when analyzing buffer handling, string manipulation functions, or investigating memory corruption vulnerabilities.
Install this agent skill to your Project
npx add-skill https://github.com/majiayu000/claude-skill-registry/tree/main/skills/development/detecting-buffer-overflows-waiwai24-binaryx-agent
SKILL.md
Buffer Overflow Detection
Detection Workflow
- Identify dangerous function calls: strcpy, strcat, sprintf, gets, memcpy without size checks
- Trace data flow: Use
xrefs_tofrom input sources (network, files, user input) to sinks - Verify bounds checking: For each copy operation, check if source size is validated and destination buffer is sufficient
- Assess exploitability: Can attacker control overflow size? Is there controlled write to critical memory?
Key Patterns
- Stack overflow: Unbounded copy to local buffer
- Heap overflow: Malloc followed by unchecked write
- Off-by-one: Loop condition or bounds check error
- Integer overflow leading to buffer overflow
Output Format
Report with: id, type (stack/heap/static), severity, confidence, location, sink, source, buffer size, overflow potential, evidence, exploitability, mitigation.
Severity Guidelines
- CRITICAL: Unbounded copy to stack buffer, attacker-controlled size
- HIGH: Bounded copy with insufficient checks, off-by-one errors
- MEDIUM: Potential overflow with limited attacker control
- LOW: Unlikely to be exploitable, theoretical only
See Also
patterns.md- Detailed detection patterns and exploitation scenariosexamples.md- Example analysis cases and code samplesreferences.md- CWE references and mitigation strategies
Recommended Agent Skills
Expand your agent's capabilities with these related and highly-rated skills.
agent-ops-spec
Manage specification documents in .agent/specs/. Use when user provides requirements, acceptance criteria, or feature descriptions that need to be tracked and validated against implementation.
agent-ops-state
Maintain .agent state files. Use at session start, after meaningful steps, and before concluding: read/update constitution/memory/focus/issues/baseline consistently.
agent-ops-spec
Manage specification documents in .agent/specs/. Use when user provides requirements, acceptance criteria, or feature descriptions that need to be tracked and validated against implementation.
agent-ops-testing
Test strategy, execution, and coverage analysis. Use when designing tests, running test suites, or analyzing test results beyond baseline checks.
agent-ops-testing
Test strategy, execution, and coverage analysis. Use when designing tests, running test suites, or analyzing test results beyond baseline checks.
agent-ops-state
Maintain .agent state files. Use at session start, after meaningful steps, and before concluding: read/update constitution/memory/focus/issues/baseline consistently.
Didn't find tool you were looking for?