binwalk --help

1.  
2. Binwalk v1.2.2-1
3. Craig Heffner, http://www.devttys0.com
4.  
5. Usage: binwalk [OPTIONS] [FILE1] [FILE2] [FILE3] ...
6.  
7. Signature Analysis:
8. -B, --binwalk Perform a file signature scan (default)
9. -R, --raw-bytes=<string> Search for a custom signature
10. -A, --opcodes Scan for executable code signatures
11. -C, --cast Cast file contents as various data types
12. -m, --magic=<file> Specify an alternate magic file to use
13. -x, --exclude=<filter> Exclude matches that have <filter> in their description
14. -y, --include=<filter> Only search for matches that have <filter> in their description
15. -I, --show-invalid Show results marked as invalid
16. -T, --ignore-time-skew Do not show results that have timestamps more than 1 year in the future
17. -k, --keep-going Show all matching results at a given offset, not just the first one
18. -b, --dumb Disable smart signature keywords
19.  
20. Strings Analysis:
21. -S, --strings Scan for ASCII strings (may be combined with -B, -R, -A, or -E)
22. -s, --strlen=<n> Set the minimum string length to search for (default: 3)
23.  
24. Entropy Analysis:
25. -E, --entropy Plot file entropy (may be combined with -B, -R, -A, or -S)
26. -H, --heuristic Identify unknown compression/encryption based on entropy heuristics (implies -E)
27. -K, --block=<int> Set the block size for entropy analysis (default: 1024)
28. -a, --gzip Use gzip compression ratios to measure entropy
29. -N, --no-plot Do not generate an entropy plot graph
30. -F, --marker=<offset:name> Add a marker to the entropy plot graph
31. -Q, --no-legend Omit the legend from the entropy plot graph
32. -J, --save-plot Save plot as an SVG (implied if multiple files are specified)
33.  
34. Binary Diffing:
35. -W, --diff Hexdump / diff the specified files
36. -K, --block=<int> Number of bytes to display per line (default: 16)
37. -G, --green Only show hex dump lines that contain bytes which were the same in all files
38. -i, --red Only show hex dump lines that contain bytes which were different in all files
39. -U, --blue Only show hex dump lines that contain bytes which were different in some files
40. -w, --terse Diff all files, but only display a hex dump of the first file
41.  
42. Extraction Options:
43. -D, --dd=<type:ext[:cmd]> Extract <type> signatures, give the files an extension of <ext>, and execute <cmd>
44. -e, --extract=[file] Automatically extract known file types; load rules from file, if specified
45. -M, --matryoshka Recursively scan extracted files, up to 8 levels deep
46. -r, --rm Cleanup extracted files and zero-size files
47. -d, --delay Delay file extraction for files with known footers
48.  
49. Plugin Options:
50. -X, --disable-plugin=<name> Disable a plugin by name
51. -Y, --enable-plugin=<name> Enable a plugin by name
52. -p, --disable-plugins Do not load any binwalk plugins
53. -L, --list-plugins List all user and system plugins by name
54.  
55. General Options:
56. -o, --offset=<int> Start scan at this file offset
57. -l, --length=<int> Number of bytes to scan
58. -g, --grep=<text> Grep results for the specified text
59. -f, --file=<file> Log results to file
60. -c, --csv Log results to file in csv format
61. -O, --skip-unopened Ignore file open errors and process only the files that can be opened
62. -t, --term Format output to fit the terminal window
63. -q, --quiet Supress output to stdout
64. -v, --verbose Be verbose (specify twice for very verbose)
65. -u, --update Update magic signature files
66. -?, --examples Show example usage
67. -h, --help Show help output