IDA-Skill
IDA-Skill is an AI Agent skill plugin designed to automate malware analysis using IDA Pro, enabling AI systems to function like human security analysts. It empowers agents to automatically identify malicious behaviors such as C2 communications, process injection, and persistence mechanisms. The tool understands code logic by analyzing function flow, recognizing encryption algorithms, and tracking data structures. It extracts critical artifacts including import tables, strings, opcodes, and YARA rules, while also locating threat indicators like IP addresses, domains, and registry keys. The package integrates advanced tools such as REAI, which uses Large Language Models to automatically comprehend function purposes, rename symbols, and annotate call chains. It also includes FindCrypt for detecting common encryption algorithms like AES, DES, and RC4, as well as Export Check for analyzing DLL anomalies. Configuration is straightforward, requiring only a path setup and natural language commands, eliminating the ne