로그인
BrownFineSecurity

ffind

by @BrownFineSecurity in Tools
529
86
# Install this skill:
npx skills add BrownFineSecurity/iothackbot --skill "ffind"

Install specific skill from multi-skill repository

# Description

Advanced file finder with type detection and filesystem extraction for analyzing firmware and extracting embedded filesystems. Use when you need to analyze firmware files, identify file types, or extract ext2/3/4 or F2FS filesystems.

# SKILL.md

name: ffind
description: Advanced file finder with type detection and filesystem extraction for analyzing firmware and extracting embedded filesystems. Use when you need to analyze firmware files, identify file types, or extract ext2/3/4 or F2FS filesystems.

Ffind - Advanced File Finder with Extraction

You are helping the user find and analyze files with advanced type detection and optional filesystem extraction capabilities using the ffind tool.

Tool Overview

Ffind analyzes files and directories, identifies file types, and can extract filesystems (ext2/3/4, F2FS) for deeper analysis. It's designed for firmware and IoT device analysis.

Instructions

When the user asks to analyze files, find specific file types, or extract filesystems:

  1. Understand the target:
  2. Ask what path(s) they want to analyze
  3. Determine if they want to extract filesystems or just analyze

  4. Ask if they want all file types or just artifact types

  5. Execute the analysis:

  6. Use the ffind command from the iothackbot bin directory
  7. Basic usage: ffind <path> [<path2> ...]
  8. To extract filesystems: ffind <path> -e
  9. Custom extraction directory: ffind <path> -e -d /path/to/output
  10. Show all file types: ffind <path> -a

  11. Verbose output: ffind <path> -v

  12. Output formats:

  13. --format text (default): Human-readable colored output with type summaries
  14. --format json: Machine-readable JSON

  15. --format quiet: Minimal output

  16. Extraction capabilities:

  17. Supports ext2/ext3/ext4 filesystems (requires e2fsprogs)
  18. Supports F2FS filesystems (requires f2fs-tools)
  19. Requires sudo privileges for extraction
  20. Default extraction location: /tmp/ffind_<timestamp>

Examples

Analyze a firmware file to see file types:

ffind /path/to/firmware.bin

Extract all filesystems from a firmware image:

sudo ffind /path/to/firmware.bin -e

Analyze multiple files and show all types:

ffind /path/to/file1.bin /path/to/file2.bin -a

Extract to a custom directory:

sudo ffind /path/to/firmware.bin -e -d /tmp/my-extraction

Important Notes

  • Extraction requires root/sudo privileges
  • Requires external tools: e2fsprogs, f2fs-tools, util-linux
  • Identifies "artifact" file types relevant to security analysis by default
  • Use -a flag to see all file types including common formats

# Related Skills

obra
executing-plans @obra

Use when you have a written implementation plan to execute in a separate session with review checkpoints

★ 32,766
obra
using-superpowers @obra

Use when starting any conversation - establishes how to find and use skills, requiring Skill...

★ 32,766

# Supported AI Coding Agents

This skill is compatible with the SKILL.md standard and works with all major AI coding agents:

Amp 🚀 Antigravity 🤖 Claude Code 🦀 Clawdbot 📝 Codex ▶️ Cursor 🤖 Droid 💎 Gemini CLI 🐙 GitHub Copilot 🪿 Goose 📊 Kilo Code 🔧 Kiro CLI 💻 OpenCode 🦘 Roo Code 🌲 Trae 🏄 Windsurf

Learn more about the SKILL.md standard and how to use these skills with your preferred AI coding agent.