docker_file_analysis/data/generated/wiki/tools/strings.md

# strings
> Extract printable ASCII and Unicode strings from binary files

**Category:** [[categories/examine-static-properties-general|Examine Static Properties > General]] | **Tier:** Rich (FOR610)
**Docs:** [https://docs.remnux.org/discover-the-tools/examine+static+properties/general](https://docs.remnux.org/discover-the-tools/examine+static+properties/general)

## Usage
```bash
strings binary.exe
strings -n 10 binary.exe
strings --encoding=l binary.exe
```

## Workflows
- [[workflows/static-analysis-workflow|Static Properties Analysis]] — Step 4: String Extraction
- [[workflows/unpacking-workflow|Unpacking Packed Executables]] — Step 8: Verification
- [[workflows/code-injection-workflow|Code Injection Analysis]] — Step 7: Extracted Payload Analysis
- [[workflows/shellcode-analysis-workflow|Shellcode Analysis]] — Step 6: String & IOC Extraction
- [[workflows/string-deobfuscation-workflow|String & Data Deobfuscation]] — Step 1: Automated Extraction
- [[workflows/memory-forensics-workflow|Memory Forensics]] — Step 6: String Search
- [[workflows/android-analysis-workflow|Android Malware Analysis]] — Step 5: Native Library Analysis
- [[workflows/java-analysis-workflow|Java Malware Analysis]] — Step 5: Resource Extraction

## Related Tools
- [[tools/7-zip|7-Zip]] — Compress and decompress files using a variety of algorithms.
- [[tools/binwalk|binwalk]] — Analyze and extract embedded files and firmware images
- [[tools/bulk-extractor|bulk-extractor]] — Extract interesting strings from binary files.
- [[tools/clamav|ClamAV]] — Open-source antivirus — scan files for known malware signatu
- [[tools/diec|diec]] — Detect packers, compilers, and tools used to create executab

## FOR610
**Labs:** 3.4, 5.2
**Sections:** 1, 3

#strings #static-analysis #triage