Binwalk

From Leo's Notes
Last edited on 30 December 2021, at 00:49.

Binwalk is a tool for analyzing firmware images or other binary files by looking for specific magic keywords that might denote the start or end of different pieces of interesting data.

Project repo: https://github.com/ReFirmLabs/binwalk

Wiki: https://github.com/ReFirmLabs/binwalk/wiki

Quick usage guide

Task Command
Basic usage; performs signature analysis binwalk firmware.bin
Extract known file types binwalk -e firmware.bin
Recursively extract file types binwalk -Me firmware.bin
Extract specific signature types binwalk -D 'png image:png' firmware.bin
Perform entropy analysis binwalk -E firmware.bin