MalwareAnalyzerMCP

Execute a command in the terminal with timeout. Command will continue running in background if it doesn't complete within timeout.

Read output from a running or completed process.

Analyze a file and determine its type

Example usage:

• Basic file identification: { "target": "suspicious.exe" }

• With options: { "target": "suspicious.exe", "options": "-b" }

Extract printable strings from a file

Example usage:

• Basic strings extraction: { "target": "suspicious.exe" }

• With minimum length: { "target": "suspicious.exe", "minLength": 10 }

• With encoding: { "target": "suspicious.exe", "encoding": "l" }

Display file contents in hexadecimal format

Example usage:

• Standard hexdump: { "target": "suspicious.exe" }

• With length limit: { "target": "suspicious.exe", "length": 256 }

• With offset: { "target": "suspicious.exe", "offset": 1024 }

Display information from object files

Example usage:

• Display file headers: { "target": "suspicious.o" }

• Disassemble code: { "target": "suspicious.exe", "disassemble": true }

• Show section headers: { "target": "suspicious.exe", "headers": true }

Create a hexdump with ASCII representation

Example usage:

• Standard xxd dump: { "target": "suspicious.exe" }

• With length limit: { "target": "suspicious.exe", "length": 256 }

• With column formatting: { "target": "suspicious.exe", "cols": 16 }

• Binary bits mode: { "target": "suspicious.exe", "bits": true }