Ryan
@rewithme.bsky.social
Object File Analyst, Programming Scientist
Reposted by Ryan
Episode 23: War Stories with Brendan Dolan-Gavitt (XBOW)!
@tib3rius.bsky.social & @swiftsecur.bsky.social are joined by @moyix.net who shares some AI and human war stories with us!
Links below!
@tib3rius.bsky.social & @swiftsecur.bsky.social are joined by @moyix.net who shares some AI and human war stories with us!
Links below!
November 7, 2025 at 3:03 PM
Episode 23: War Stories with Brendan Dolan-Gavitt (XBOW)!
@tib3rius.bsky.social & @swiftsecur.bsky.social are joined by @moyix.net who shares some AI and human war stories with us!
Links below!
@tib3rius.bsky.social & @swiftsecur.bsky.social are joined by @moyix.net who shares some AI and human war stories with us!
Links below!
Reposted by Ryan
🎙️ #ASE2025 Keynote Speaker Series (2 of 3)
Dr. Cristina Cifuentes, Vice President @ Oracle Software Assurance
“Oracle Parfait – Detecting Application Vulnerabilities at Scale – Past, Present and Future”
Dr. Cristina Cifuentes, Vice President @ Oracle Software Assurance
“Oracle Parfait – Detecting Application Vulnerabilities at Scale – Past, Present and Future”
October 26, 2025 at 3:19 AM
🎙️ #ASE2025 Keynote Speaker Series (2 of 3)
Dr. Cristina Cifuentes, Vice President @ Oracle Software Assurance
“Oracle Parfait – Detecting Application Vulnerabilities at Scale – Past, Present and Future”
Dr. Cristina Cifuentes, Vice President @ Oracle Software Assurance
“Oracle Parfait – Detecting Application Vulnerabilities at Scale – Past, Present and Future”
Reposted by Ryan
🎙️ ASE 2025 Keynote Speaker Series (3 of 3)
Prof. Taesoo Kim (Georgia Tech)
“Hyperscale Bug Finding and Fixing: DARPA AIxCC”
conf.researchr.org/track/ase-20...
Prof. Taesoo Kim (Georgia Tech)
“Hyperscale Bug Finding and Fixing: DARPA AIxCC”
conf.researchr.org/track/ase-20...
October 28, 2025 at 7:44 AM
🎙️ ASE 2025 Keynote Speaker Series (3 of 3)
Prof. Taesoo Kim (Georgia Tech)
“Hyperscale Bug Finding and Fixing: DARPA AIxCC”
conf.researchr.org/track/ase-20...
Prof. Taesoo Kim (Georgia Tech)
“Hyperscale Bug Finding and Fixing: DARPA AIxCC”
conf.researchr.org/track/ase-20...
Reposted by Ryan
🎙️ #ASE2025 Keynote Speaker Series (1 of 3)
What do symbolic model checking, path profiling, and quantum simulation have in common? 🤔
Find out from Prof. Reps (University of Wisconsin-Madison) in his ASE2025 Keynote “We Will Publish No Algorithm Before Its Time”!
conf.researchr.org/track/ase-20...
What do symbolic model checking, path profiling, and quantum simulation have in common? 🤔
Find out from Prof. Reps (University of Wisconsin-Madison) in his ASE2025 Keynote “We Will Publish No Algorithm Before Its Time”!
conf.researchr.org/track/ase-20...
October 22, 2025 at 11:39 AM
🎙️ #ASE2025 Keynote Speaker Series (1 of 3)
What do symbolic model checking, path profiling, and quantum simulation have in common? 🤔
Find out from Prof. Reps (University of Wisconsin-Madison) in his ASE2025 Keynote “We Will Publish No Algorithm Before Its Time”!
conf.researchr.org/track/ase-20...
What do symbolic model checking, path profiling, and quantum simulation have in common? 🤔
Find out from Prof. Reps (University of Wisconsin-Madison) in his ASE2025 Keynote “We Will Publish No Algorithm Before Its Time”!
conf.researchr.org/track/ase-20...
Reposted by Ryan
You've seen the trends in AIxCC: LLMs can hack source, find vulns, and patch them. But what about on binaries without source? Do decompilers close the gap, or is there more to grow?
Come see my talk at DistrctCon where I merge and dissect these two fields: AI Hacking + Decomp.
Come see my talk at DistrctCon where I merge and dissect these two fields: AI Hacking + Decomp.
October 30, 2025 at 4:02 PM
You've seen the trends in AIxCC: LLMs can hack source, find vulns, and patch them. But what about on binaries without source? Do decompilers close the gap, or is there more to grow?
Come see my talk at DistrctCon where I merge and dissect these two fields: AI Hacking + Decomp.
Come see my talk at DistrctCon where I merge and dissect these two fields: AI Hacking + Decomp.
Reposted by Ryan
Must-read for fuzzing folks (read: tooling/algorithms/academia) by Addison Crump
addisoncrump.info/research/wha...
addisoncrump.info/research/wha...
What the hell are we doing? · Addison Crump
Homepage for Addison Crump
addisoncrump.info
October 26, 2025 at 3:16 AM
Must-read for fuzzing folks (read: tooling/algorithms/academia) by Addison Crump
addisoncrump.info/research/wha...
addisoncrump.info/research/wha...
Reposted by Ryan
We at @emproofsecurity.bsky.social open-sourced a free firmware reverse engineering workshop for self-study.
Topics: ELF analysis, cracking, malware triage, embedded-Linux, bare-metal, crypto-key extraction, anti-analysis. Docker setup and solutions included.
github.com/emproof-com/...
Topics: ELF analysis, cracking, malware triage, embedded-Linux, bare-metal, crypto-key extraction, anti-analysis. Docker setup and solutions included.
github.com/emproof-com/...
GitHub - emproof-com/workshop_firmware_reverse_engineering: Workshop on firmware reverse engineering
Workshop on firmware reverse engineering. Contribute to emproof-com/workshop_firmware_reverse_engineering development by creating an account on GitHub.
github.com
September 30, 2025 at 8:36 AM
We at @emproofsecurity.bsky.social open-sourced a free firmware reverse engineering workshop for self-study.
Topics: ELF analysis, cracking, malware triage, embedded-Linux, bare-metal, crypto-key extraction, anti-analysis. Docker setup and solutions included.
github.com/emproof-com/...
Topics: ELF analysis, cracking, malware triage, embedded-Linux, bare-metal, crypto-key extraction, anti-analysis. Docker setup and solutions included.
github.com/emproof-com/...
Reposted by Ryan
I wrote a comprehensive post dispelling many incorrect assumptions about Copyleft vs Permissive open source licenses.
If you author/contribute to open source code, it's worth reading and understanding these nuances!
shazow.net/posts/permis...
If you author/contribute to open source code, it's worth reading and understanding these nuances!
shazow.net/posts/permis...
July 15, 2025 at 5:37 PM
I wrote a comprehensive post dispelling many incorrect assumptions about Copyleft vs Permissive open source licenses.
If you author/contribute to open source code, it's worth reading and understanding these nuances!
shazow.net/posts/permis...
If you author/contribute to open source code, it's worth reading and understanding these nuances!
shazow.net/posts/permis...
Reposted by Ryan
New blog post on implementing patchelf-like functionalities using LIEF's Rust bindings:
lief.re/blog/2025-07...
lief.re/blog/2025-07...
LIEF patchelf
This blog post introduces a modern LIEF-based version of patchelf
lief.re
July 14, 2025 at 5:09 AM
New blog post on implementing patchelf-like functionalities using LIEF's Rust bindings:
lief.re/blog/2025-07...
lief.re/blog/2025-07...
Reposted by Ryan
Cool blog of how @aendra.com built @xblock.aendra.dev her automoderation tuned screenshot classifier AI model and pipeline, including all the manual work behind it.
www.aendra.com/xblock-summe...
www.aendra.com/xblock-summe...
XBlock Summer 2024 Update
Howdy! I figure it's probably not the worst idea to do a quick update on XBlock progress, as well as give some indication what I'm planning to do in the future with it. This will be more roadmap-y tha...
www.aendra.com
July 9, 2025 at 12:48 AM
Cool blog of how @aendra.com built @xblock.aendra.dev her automoderation tuned screenshot classifier AI model and pipeline, including all the manual work behind it.
www.aendra.com/xblock-summe...
www.aendra.com/xblock-summe...
Reposted by Ryan
It was great to see the community come together again at our 4th #FUZZING workshop in Trondheim this year! We drew a big crowd. Enjoyed the super lively discussions.
Thanks to the organizers:
* @rohan.padhye.org
* @yannicnoller.bsky.social
* @ruijiemeng.bsky.social and
* László Szekeres (Google)
Thanks to the organizers:
* @rohan.padhye.org
* @yannicnoller.bsky.social
* @ruijiemeng.bsky.social and
* László Szekeres (Google)
June 29, 2025 at 7:25 AM
It was great to see the community come together again at our 4th #FUZZING workshop in Trondheim this year! We drew a big crowd. Enjoyed the super lively discussions.
Thanks to the organizers:
* @rohan.padhye.org
* @yannicnoller.bsky.social
* @ruijiemeng.bsky.social and
* László Szekeres (Google)
Thanks to the organizers:
* @rohan.padhye.org
* @yannicnoller.bsky.social
* @ruijiemeng.bsky.social and
* László Szekeres (Google)
Reposted by Ryan
🚨 Our amazing #FUZZING'25 keynotes are online!
"Constraining Fuzzing without Paying Too Much" by Miryung Kim
youtu.be/L90MBb6NLBE
"Are you sure you belong in academia?" by Will Wilson
youtu.be/qQGuQ_4V6WI
// @mboehme.bsky.social, László Szekeres, @rohan.padhye.org, @ruijiemeng.bsky.social
"Constraining Fuzzing without Paying Too Much" by Miryung Kim
youtu.be/L90MBb6NLBE
"Are you sure you belong in academia?" by Will Wilson
youtu.be/qQGuQ_4V6WI
// @mboehme.bsky.social, László Szekeres, @rohan.padhye.org, @ruijiemeng.bsky.social
We had two exciting keynotes:
* From academia: Miryung Kim (Prof @ UCLA)
* From industry: Will Wilson (CEO and Co-Founder of @AntithesisHQ.bsky.social).
Stay tuned for recordings!
* From academia: Miryung Kim (Prof @ UCLA)
* From industry: Will Wilson (CEO and Co-Founder of @AntithesisHQ.bsky.social).
Stay tuned for recordings!
June 29, 2025 at 7:35 AM
🚨 Our amazing #FUZZING'25 keynotes are online!
"Constraining Fuzzing without Paying Too Much" by Miryung Kim
youtu.be/L90MBb6NLBE
"Are you sure you belong in academia?" by Will Wilson
youtu.be/qQGuQ_4V6WI
// @mboehme.bsky.social, László Szekeres, @rohan.padhye.org, @ruijiemeng.bsky.social
"Constraining Fuzzing without Paying Too Much" by Miryung Kim
youtu.be/L90MBb6NLBE
"Are you sure you belong in academia?" by Will Wilson
youtu.be/qQGuQ_4V6WI
// @mboehme.bsky.social, László Szekeres, @rohan.padhye.org, @ruijiemeng.bsky.social
Reposted by Ryan
srcML Dockerfile... gist.github.com/edmcman/edff...
srcML Dockerfile
srcML Dockerfile. GitHub Gist: instantly share code, notes, and snippets.
gist.github.com
June 11, 2025 at 10:47 PM
srcML Dockerfile... gist.github.com/edmcman/edff...
Reposted by Ryan
HF space for the Nova neural decompiler: huggingface.co/spaces/ejsch...
Nova 6.7b - a Hugging Face Space by ejschwartz
This application converts assembly code into C source code. Users need to input assembly code and specify the optimization type. The result is the corresponding C source code.
huggingface.co
May 29, 2025 at 1:12 PM
HF space for the Nova neural decompiler: huggingface.co/spaces/ejsch...
Reposted by Ryan
A small slide deck for a 15 minute impulse talk at Cycon 2025 in Talinn: docs.google.com/presentation...
A walk down the learning curve
A walk down the learning curve (and memory lane) Thomas Dullien (“Halvar Flake”) Computing Mathematician
docs.google.com
May 28, 2025 at 2:43 PM
A small slide deck for a 15 minute impulse talk at Cycon 2025 in Talinn: docs.google.com/presentation...
Reposted by Ryan
[Blog Post] New high-level API in LIEF that allows the
creation of DWARF files. Additionally, I present two plugins designed to export
program information from Ghidra and BinaryNinja into a DWARF file.
lief.re/blog/2025-05...
(Bonus: DWARF file detailing my reverse engineering work on DroidGuard)
creation of DWARF files. Additionally, I present two plugins designed to export
program information from Ghidra and BinaryNinja into a DWARF file.
lief.re/blog/2025-05...
(Bonus: DWARF file detailing my reverse engineering work on DroidGuard)
DWARF as a Shared Reverse Engineering Format
This blog post introduces a new API in LIEF to create DWARF files
lief.re
May 27, 2025 at 1:51 PM
[Blog Post] New high-level API in LIEF that allows the
creation of DWARF files. Additionally, I present two plugins designed to export
program information from Ghidra and BinaryNinja into a DWARF file.
lief.re/blog/2025-05...
(Bonus: DWARF file detailing my reverse engineering work on DroidGuard)
creation of DWARF files. Additionally, I present two plugins designed to export
program information from Ghidra and BinaryNinja into a DWARF file.
lief.re/blog/2025-05...
(Bonus: DWARF file detailing my reverse engineering work on DroidGuard)
Reposted by Ryan
All papers should publish their code. Help realize this by becoming an artifact reviewer at NDSS'26, apply here: docs.google.com/forms/d/e/1F...
You'll review artifacts of accepted papers. We especially encourage junior/senior PhD students & PostDocs to help. Distinguished reviews will get awards!
You'll review artifacts of accepted papers. We especially encourage junior/senior PhD students & PostDocs to help. Distinguished reviews will get awards!
Self-nomination for the Artifact Evaluation Committee of NDSS 2026
We are looking for members of the Artifact Evaluation Committee (AEC) of NDSS 2026.
The Network and Distributed System Security symposium adopts an Artifact Evaluation (AE) process allowing authors t...
docs.google.com
May 25, 2025 at 1:25 PM
All papers should publish their code. Help realize this by becoming an artifact reviewer at NDSS'26, apply here: docs.google.com/forms/d/e/1F...
You'll review artifacts of accepted papers. We especially encourage junior/senior PhD students & PostDocs to help. Distinguished reviews will get awards!
You'll review artifacts of accepted papers. We especially encourage junior/senior PhD students & PostDocs to help. Distinguished reviews will get awards!
Reposted by Ryan
Excited to see my LLM CLI tool used by Sean Heelan to help identify a remote zeroday vulnerability in the Linux kernel!
simonwillison.net/2025/May/24/...
simonwillison.net/2025/May/24/...
How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation
Sean Heelan: > The vulnerability [o3] found is CVE-2025-37899 (fix [here](https://github.com/torvalds/linux/commit/2fc9feff45d92a92cd5f96487655d5be23fb7e2b)), a use-after-free in the handler for the S...
simonwillison.net
May 24, 2025 at 11:42 PM
Excited to see my LLM CLI tool used by Sean Heelan to help identify a remote zeroday vulnerability in the Linux kernel!
simonwillison.net/2025/May/24/...
simonwillison.net/2025/May/24/...
Reposted by Ryan
We're are happy to announce a new release of our #Rust bindings for idalib.
What's new:
- New APIs for working with IDBs, segments, and more
- Rust 2024 support
- New homepage: idalib.rs
H/T to our contributors @yeggor.bsky.social & @raptor.infosec.exchange.ap.brid.gy
github.com/binarly-io/i...
What's new:
- New APIs for working with IDBs, segments, and more
- Rust 2024 support
- New homepage: idalib.rs
H/T to our contributors @yeggor.bsky.social & @raptor.infosec.exchange.ap.brid.gy
github.com/binarly-io/i...
GitHub - binarly-io/idalib: Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.x’s idalib
Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.x’s idalib - binarly-io/idalib
github.com
May 21, 2025 at 10:28 PM
We're are happy to announce a new release of our #Rust bindings for idalib.
What's new:
- New APIs for working with IDBs, segments, and more
- Rust 2024 support
- New homepage: idalib.rs
H/T to our contributors @yeggor.bsky.social & @raptor.infosec.exchange.ap.brid.gy
github.com/binarly-io/i...
What's new:
- New APIs for working with IDBs, segments, and more
- Rust 2024 support
- New homepage: idalib.rs
H/T to our contributors @yeggor.bsky.social & @raptor.infosec.exchange.ap.brid.gy
github.com/binarly-io/i...
Reposted by Ryan
this is still the Best Post about symbolic execution. it uses some cursed python to make a tiny but illustrative symbolic execution engine
kqueue.org/blog/2015/05...
kqueue.org/blog/2015/05...
A mini symbolic execution engine
It has been a while since I blogged last time. One change is that I started to have nightmares about me forgetting to prepare for lecture, rather than forgetting to turn in homework as in the past 20(...
kqueue.org
May 3, 2025 at 5:44 PM
this is still the Best Post about symbolic execution. it uses some cursed python to make a tiny but illustrative symbolic execution engine
kqueue.org/blog/2015/05...
kqueue.org/blog/2015/05...
Reposted by Ryan
🚨 Blog Post: "Re-compiling Decompiler Output" https://edmcman.github.io/blog/2025-05-02--re-compiling-ghidra-decompiler-output/
May 3, 2025 at 2:54 PM
🚨 Blog Post: "Re-compiling Decompiler Output" https://edmcman.github.io/blog/2025-05-02--re-compiling-ghidra-decompiler-output/
Reposted by Ryan
Review Criteria for Technical (TP) and Experience Papers (EP) @ #ASE25.
* In TP, PC evaluates the significance of the problem, the novelty of the approach and the soundness of the eval.
* In EP, PC evaluates the practical importance + the description of scope, insights, and perspective.
Details:
* In TP, PC evaluates the significance of the problem, the novelty of the approach and the soundness of the eval.
* In EP, PC evaluates the practical importance + the description of scope, insights, and perspective.
Details:
May 3, 2025 at 2:25 PM
Review Criteria for Technical (TP) and Experience Papers (EP) @ #ASE25.
* In TP, PC evaluates the significance of the problem, the novelty of the approach and the soundness of the eval.
* In EP, PC evaluates the practical importance + the description of scope, insights, and perspective.
Details:
* In TP, PC evaluates the significance of the problem, the novelty of the approach and the soundness of the eval.
* In EP, PC evaluates the practical importance + the description of scope, insights, and perspective.
Details:
Reposted by Ryan
✨️ Now that #ICSE25 is over, it's time to get your papers ready for #ASE25 (30th May)!
📢 Here is what's new:
* Major Revision v2.0
* Review criteria for tech. & experience papers
* Policy on LLM-assisted Reviews
* Auto-bidding (TPMS)
* Rapid Response Reliable Reviewers
👇 For more details, read on.
📢 Here is what's new:
* Major Revision v2.0
* Review criteria for tech. & experience papers
* Policy on LLM-assisted Reviews
* Auto-bidding (TPMS)
* Rapid Response Reliable Reviewers
👇 For more details, read on.
May 3, 2025 at 2:25 PM
Reposted by Ryan
Major Revision 2.0 @ #ASE25.
Objective:
* Reviewer continuity > recycling.
* Reduce PC workload.
* Minimize ambiguity.
* Avoid deferred rejects.
tl;dr:
* MR = reviewers commit to accepting the MR if it addresses the revision items *irrespective* of any new results.
* Only DL is required to check.
Objective:
* Reviewer continuity > recycling.
* Reduce PC workload.
* Minimize ambiguity.
* Avoid deferred rejects.
tl;dr:
* MR = reviewers commit to accepting the MR if it addresses the revision items *irrespective* of any new results.
* Only DL is required to check.
May 3, 2025 at 2:25 PM
Major Revision 2.0 @ #ASE25.
Objective:
* Reviewer continuity > recycling.
* Reduce PC workload.
* Minimize ambiguity.
* Avoid deferred rejects.
tl;dr:
* MR = reviewers commit to accepting the MR if it addresses the revision items *irrespective* of any new results.
* Only DL is required to check.
Objective:
* Reviewer continuity > recycling.
* Reduce PC workload.
* Minimize ambiguity.
* Avoid deferred rejects.
tl;dr:
* MR = reviewers commit to accepting the MR if it addresses the revision items *irrespective* of any new results.
* Only DL is required to check.