cwe_checker is a static analysis tool designed to detect common vulnerability patterns in ELF binaries across multiple CPU architectures. The tool identifies bug classes formally categorized as Common Weakness Enumerations (CWEs), including null pointer dereferences and buffer overflows. The tool leverages Ghidra for binary disassembly, converting executables into a common intermediate representation for analysis. This approach enables cross-architecture support for x86, ARM, MIPS, and PPC binaries, making it particularly useful for firmware security analysis. cwe_checker implements various analysis techniques ranging from simple heuristics to abstract interpretation-based data-flow analysis. The tool features a plugin-based architecture that allows for extensibility and customization of analysis rules and APIs. Key capabilities include: - Static analysis of ELF binaries without requiring source code - Multi-architecture support through Ghidra integration - Detection of memory safety vulnerabilities and common programming errors - Configurable analysis parameters and rule sets - Integration with Ghidra for annotated result visualization - Docker-based deployment for simplified setup The tool outputs analysis results that can be viewed within Ghidra's interface, providing analysts with annotated views of potentially vulnerable code paths. This integration helps security researchers and developers identify and prioritize security issues in compiled binaries.