Cindʎ Xiao 🍉
@cxiao.net
professional strings(1) operator
rust reverse engineering training -> @decoderloop.com
she/her or they/them
🏳️🌈😎
personal account! views are mine.
https://cxiao.net
https://infosec.exchange/@cxiao
rust reverse engineering training -> @decoderloop.com
she/her or they/them
🏳️🌈😎
personal account! views are mine.
https://cxiao.net
https://infosec.exchange/@cxiao
Thank you so much for the kind words and support as always Jesko 🙏🙏🙏
October 17, 2025 at 2:14 PM
Thank you so much for the kind words and support as always Jesko 🙏🙏🙏
I'll also be at Ringzer0 COUNTERMEASURE on November 7 in Ottawa, Canada, giving a Rust RE focused workshop! ringzer0.training/countermeasu...
Come say hi if you're there, and let's chat Rust RE!
Come say hi if you're there, and let's chat Rust RE!
ringzer0.training
October 17, 2025 at 2:13 PM
I'll also be at Ringzer0 COUNTERMEASURE on November 7 in Ottawa, Canada, giving a Rust RE focused workshop! ringzer0.training/countermeasu...
Come say hi if you're there, and let's chat Rust RE!
Come say hi if you're there, and let's chat Rust RE!
The tools and techniques that reverse engineers have were built for the era of C. Meanwhile, malware and software developers are switching to modern programming languages such as Rust.
Decoder Loop is here to level the playing field, for reverse engineers facing modern binaries.
decoderloop.com
Decoder Loop is here to level the playing field, for reverse engineers facing modern binaries.
decoderloop.com
Decoder Loop | Reverse Engineering Training
Decoder Loop | Reverse Engineering Training
decoderloop.com
October 17, 2025 at 2:12 PM
The tools and techniques that reverse engineers have were built for the era of C. Meanwhile, malware and software developers are switching to modern programming languages such as Rust.
Decoder Loop is here to level the playing field, for reverse engineers facing modern binaries.
decoderloop.com
Decoder Loop is here to level the playing field, for reverse engineers facing modern binaries.
decoderloop.com
Update: The infostealer delivered here is actually a known one, called Myth Stealer! You can read more about the stealer payload in Trellix's article here:
www.trellix.com/blogs/resear...
Thank you to one of the Trellix article authors for reaching out to me about it!
www.trellix.com/blogs/resear...
Thank you to one of the Trellix article authors for reaching out to me about it!
www.trellix.com
August 17, 2025 at 5:48 PM
Update: The infostealer delivered here is actually a known one, called Myth Stealer! You can read more about the stealer payload in Trellix's article here:
www.trellix.com/blogs/resear...
Thank you to one of the Trellix article authors for reaching out to me about it!
www.trellix.com/blogs/resear...
Thank you to one of the Trellix article authors for reaching out to me about it!
🇨🇦 I'll also be presenting a hands-on version of "Reversing a (not-so-) Simple Rust Loader" as a workshop at Ringzer0 COUNTERMEASURE in Ottawa, Canada on November 7, 2025!
ringzer0.training/countermeasu...
#malware #rustlang #infosec #ReverseEngineering #MalwareAnalysis #ringzer0
ringzer0.training/countermeasu...
#malware #rustlang #infosec #ReverseEngineering #MalwareAnalysis #ringzer0
WORKSHOP: Reversing a (not-so-) Simple Rust Loader // Cindy Xiao
Rust can be challenging for even experienced reverse engineers. We will reverse a simple Rust malware loader found in the wild with obfuscated strings and a decoy payload, making it a good example for...
ringzer0.training
August 17, 2025 at 3:45 PM
🇨🇦 I'll also be presenting a hands-on version of "Reversing a (not-so-) Simple Rust Loader" as a workshop at Ringzer0 COUNTERMEASURE in Ottawa, Canada on November 7, 2025!
ringzer0.training/countermeasu...
#malware #rustlang #infosec #ReverseEngineering #MalwareAnalysis #ringzer0
ringzer0.training/countermeasu...
#malware #rustlang #infosec #ReverseEngineering #MalwareAnalysis #ringzer0
Thanks very much to 0xabad1dea@infosec.exchange and demize@unstable.systems, both on Mastodon, for providing the sample!
August 17, 2025 at 3:43 PM
Thanks very much to 0xabad1dea@infosec.exchange and demize@unstable.systems, both on Mastodon, for providing the sample!
asian dudes got bucket hats figured out already
August 3, 2025 at 5:03 AM
asian dudes got bucket hats figured out already
Reposted by Cindʎ Xiao 🍉
Microsoft has released security updates that protect customers using SharePoint Subscription Edition and SharePoint 2019 against the risks posed by CVE-2025-53770 & CVE-2025-53771. We’re actively working on updates for SharePoint 2016. Get updated guidance & detection details: msft.it/6010sDzSE
July 21, 2025 at 2:16 AM
Microsoft has released security updates that protect customers using SharePoint Subscription Edition and SharePoint 2019 against the risks posed by CVE-2025-53770 & CVE-2025-53771. We’re actively working on updates for SharePoint 2016. Get updated guidance & detection details: msft.it/6010sDzSE
sometimes there is such a thing as too much sharing 😭😭😭
July 21, 2025 at 1:27 AM
sometimes there is such a thing as too much sharing 😭😭😭