# strdeob.pl
# Automatically decode stack-built strings from disassembled malware
# FOR610 Labs: 5.2 | Sections: 5
# Docs: https://docs.remnux.org/discover-the-tools/examine+static+properties/deobfuscation

% stack-strings, deobfuscation

# Basic usage
strdeob.pl specimen.exe


# --- Recipes (multi-tool chains) ---

# >> Extract Stack-Built Strings
# Automatic stack string recovery
strdeob.pl <sample>
# FLOSS automatic deobfuscation (static + stack + decoded)
floss <sample>
# FLOSS skip static strings, only show decoded
floss --no-static -- <sample>