Jimmy Wylie
@mayahustle.com
I look for ICS threats, and spend a lot of time reverse engineering.
Distinguished Malware Analyst @ Dragos.
Lead Analyst on TRISIS and PIPEDREAM.
He/Him
Distinguished Malware Analyst @ Dragos.
Lead Analyst on TRISIS and PIPEDREAM.
He/Him
I'm speaking at S4x26 on creating a FrostyGoop-style tool using AI. This experiment has been a good avenue for tackling a few questions I've had about AI-enabled software development. Most importantly, just how easy is it?
I'm excited to share what I learn come February!
1/2
I'm excited to share what I learn come February!
1/2
October 27, 2025 at 2:04 PM
I'm speaking at S4x26 on creating a FrostyGoop-style tool using AI. This experiment has been a good avenue for tackling a few questions I've had about AI-enabled software development. Most importantly, just how easy is it?
I'm excited to share what I learn come February!
1/2
I'm excited to share what I learn come February!
1/2
In ICS, malware analysis can feel like archaeology. I started the week with a 13 year old sample and ended the week with @sam-hans0n.bsky.social pinging about an 18 years old sample.
So, save your old Windows ISOs and VMs, you might need them!
So, save your old Windows ISOs and VMs, you might need them!
October 10, 2025 at 6:40 PM
In ICS, malware analysis can feel like archaeology. I started the week with a 13 year old sample and ended the week with @sam-hans0n.bsky.social pinging about an 18 years old sample.
So, save your old Windows ISOs and VMs, you might need them!
So, save your old Windows ISOs and VMs, you might need them!
Thanks to @cybrseccon.bsky.social / HOU.SEC.CON for having us last week. (and for a really unique speaker gift!) The conference has grown into a valuable industry event, and I'm looking forward to the next one!
ICYMI, we posted resources from our talk here:
gist.github.com/maya...
ICYMI, we posted resources from our talk here:
gist.github.com/maya...
October 8, 2025 at 3:51 PM
Thanks to @cybrseccon.bsky.social / HOU.SEC.CON for having us last week. (and for a really unique speaker gift!) The conference has grown into a valuable industry event, and I'm looking forward to the next one!
ICYMI, we posted resources from our talk here:
gist.github.com/maya...
ICYMI, we posted resources from our talk here:
gist.github.com/maya...
This is a great story about Donald Knuth and Doug McIlroy participating in a literate programming exercise and a hilarious example of different perspectives in problem solving from godfathers of Computer Science.
Original post: hachyderm.io/@mweagle/115...
Original post: hachyderm.io/@mweagle/115...
September 4, 2025 at 10:32 PM
This is a great story about Donald Knuth and Doug McIlroy participating in a literate programming exercise and a hilarious example of different perspectives in problem solving from godfathers of Computer Science.
Original post: hachyderm.io/@mweagle/115...
Original post: hachyderm.io/@mweagle/115...
Sam Hanson and I are speaking at @hou-sec-con.bsky.social on hunting for Python and Go ICS-related malware. You'll learn playbooks for these cases and hear stories about malware targeting ICS in the past year. The talk is on October 1st, at 1 p.m., Track 1. I hope you can make it!
#ICS #OTSecurity
#ICS #OTSecurity
September 3, 2025 at 6:28 PM
Sam Hanson and I are speaking at @hou-sec-con.bsky.social on hunting for Python and Go ICS-related malware. You'll learn playbooks for these cases and hear stories about malware targeting ICS in the past year. The talk is on October 1st, at 1 p.m., Track 1. I hope you can make it!
#ICS #OTSecurity
#ICS #OTSecurity
My reading list for the rest of the year, inspired by DEFCON 33 and the starting chapters of the first book:
- Microcontroller Exploits - Goodspeed
- Hack to the Future - Crose
- Hardware Hacker - bunnie
- Hardware Hacking Handbook - Van Woudenberg + O’Flynn
- Art of Mac Malware (Vol 1+2) - Wardle
- Microcontroller Exploits - Goodspeed
- Hack to the Future - Crose
- Hardware Hacker - bunnie
- Hardware Hacking Handbook - Van Woudenberg + O’Flynn
- Art of Mac Malware (Vol 1+2) - Wardle
August 25, 2025 at 2:07 PM
My reading list for the rest of the year, inspired by DEFCON 33 and the starting chapters of the first book:
- Microcontroller Exploits - Goodspeed
- Hack to the Future - Crose
- Hardware Hacker - bunnie
- Hardware Hacking Handbook - Van Woudenberg + O’Flynn
- Art of Mac Malware (Vol 1+2) - Wardle
- Microcontroller Exploits - Goodspeed
- Hack to the Future - Crose
- Hardware Hacker - bunnie
- Hardware Hacking Handbook - Van Woudenberg + O’Flynn
- Art of Mac Malware (Vol 1+2) - Wardle
Played “In the Footsteps of Marie Curie” tonight. More of a family game, light on the strategy, easy playing. Good one for folks just getting into independent #boardgames
August 15, 2025 at 3:24 AM
Played “In the Footsteps of Marie Curie” tonight. More of a family game, light on the strategy, easy playing. Good one for folks just getting into independent #boardgames
GoResolver was already awesome. Now, they added string extraction and definition in IDA/Ghidra and RTTI parsing and application — two big Golang reversing pain paints. I can’t wait to try it out this week.
Original post: infosec.exchange/@volexity/11...
Original post: infosec.exchange/@volexity/11...
August 12, 2025 at 3:12 AM
GoResolver was already awesome. Now, they added string extraction and definition in IDA/Ghidra and RTTI parsing and application — two big Golang reversing pain paints. I can’t wait to try it out this week.
Original post: infosec.exchange/@volexity/11...
Original post: infosec.exchange/@volexity/11...
Revive! I’m not sure how to categorize this game. Like a worker placement/deck building hybrid that feels like tile placement. Despite how complicated it looks, it’s not hard to learn how to play, and it allows many types of strategies. High replay value I think.
June 24, 2025 at 3:32 AM
Revive! I’m not sure how to categorize this game. Like a worker placement/deck building hybrid that feels like tile placement. Despite how complicated it looks, it’s not hard to learn how to play, and it allows many types of strategies. High replay value I think.
Busy Week!
Grateful to SANS ICS for hosting my talk on ICS Malware. It was a great experience.
We released our whitepaper on the subject ( www.dragos.com/resou... ).
We also got word that my talk with Sam Hanson on assessing ICS threats was accepted at Defcon ICS village. Hope to see you there!
Grateful to SANS ICS for hosting my talk on ICS Malware. It was a great experience.
We released our whitepaper on the subject ( www.dragos.com/resou... ).
We also got word that my talk with Sam Hanson on assessing ICS threats was accepted at Defcon ICS village. Hope to see you there!
June 20, 2025 at 7:51 PM
Busy Week!
Grateful to SANS ICS for hosting my talk on ICS Malware. It was a great experience.
We released our whitepaper on the subject ( www.dragos.com/resou... ).
We also got word that my talk with Sam Hanson on assessing ICS threats was accepted at Defcon ICS village. Hope to see you there!
Grateful to SANS ICS for hosting my talk on ICS Malware. It was a great experience.
We released our whitepaper on the subject ( www.dragos.com/resou... ).
We also got word that my talk with Sam Hanson on assessing ICS threats was accepted at Defcon ICS village. Hope to see you there!
I almost quit computer science today because I found out there are ELEVEN hyphen chars in UTF-8, including a SOFT HYPHEN (0xC2 0xAD) which is a "discretionary hyphen" OR
"an invisible format character indicating a possible hyphenation location"
I didn't know UTF-8 believed in quantum hyphenation.
"an invisible format character indicating a possible hyphenation location"
I didn't know UTF-8 believed in quantum hyphenation.
June 13, 2025 at 9:08 PM
I almost quit computer science today because I found out there are ELEVEN hyphen chars in UTF-8, including a SOFT HYPHEN (0xC2 0xAD) which is a "discretionary hyphen" OR
"an invisible format character indicating a possible hyphenation location"
I didn't know UTF-8 believed in quantum hyphenation.
"an invisible format character indicating a possible hyphenation location"
I didn't know UTF-8 believed in quantum hyphenation.
I haven't felt this level of anxiety at work in a while.
March 27, 2025 at 10:36 PM
I haven't felt this level of anxiety at work in a while.
Barrage: a game where you take on the role of an international corporation competing for hydroelectric dominance.
Tried the Automa mode.
Automa: 112, Me: 99. 😞
Tried the Automa mode.
Automa: 112, Me: 99. 😞
February 9, 2025 at 8:29 AM
Barrage: a game where you take on the role of an international corporation competing for hydroelectric dominance.
Tried the Automa mode.
Automa: 112, Me: 99. 😞
Tried the Automa mode.
Automa: 112, Me: 99. 😞
Who knew the Philipinnes USPS office was so darn pushy!
You'd better put me on payroll if you expect me to do this much work to infect myself.
(+63 is Philipinnes, the link is malicious, please don't fall for this)
You'd better put me on payroll if you expect me to do this much work to infect myself.
(+63 is Philipinnes, the link is malicious, please don't fall for this)
December 16, 2024 at 8:18 PM
Who knew the Philipinnes USPS office was so darn pushy!
You'd better put me on payroll if you expect me to do this much work to infect myself.
(+63 is Philipinnes, the link is malicious, please don't fall for this)
You'd better put me on payroll if you expect me to do this much work to infect myself.
(+63 is Philipinnes, the link is malicious, please don't fall for this)
Picked this up on a whim at PAX, and played it as soon as we got back. Delightful game, and easy to travel with:
Sosig by Joking Hazard
Sosig by Joking Hazard
December 9, 2024 at 9:29 PM
Picked this up on a whim at PAX, and played it as soon as we got back. Delightful game, and easy to travel with:
Sosig by Joking Hazard
Sosig by Joking Hazard
I was an audience member for a few rounds of Underwater Cities (Rio Grande Games) that my buddy taught at #paxunplugged
It’s a fun engine building/resource management game. Can be a lot to keep track of near the end, but that’s a small quibble.
It’s a fun engine building/resource management game. Can be a lot to keep track of near the end, but that’s a small quibble.
December 6, 2024 at 9:07 PM
I was an audience member for a few rounds of Underwater Cities (Rio Grande Games) that my buddy taught at #paxunplugged
It’s a fun engine building/resource management game. Can be a lot to keep track of near the end, but that’s a small quibble.
It’s a fun engine building/resource management game. Can be a lot to keep track of near the end, but that’s a small quibble.
How do I turn this into a #ransomware analogy? #paxunplugged
December 6, 2024 at 4:45 PM
How do I turn this into a #ransomware analogy? #paxunplugged
We did it, thankfully. I don’t think I had the patience for another 3.5 hr+ attempt on this scenario.
December 3, 2024 at 3:04 AM
We did it, thankfully. I don’t think I had the patience for another 3.5 hr+ attempt on this scenario.
After over a year, we’re finally attempting the last Frosthaven scenario!
(I promise.. eventually I’ll post infosec content. But right now it’s Board Games and Corgis)
(I promise.. eventually I’ll post infosec content. But right now it’s Board Games and Corgis)
November 25, 2024 at 11:54 PM
After over a year, we’re finally attempting the last Frosthaven scenario!
(I promise.. eventually I’ll post infosec content. But right now it’s Board Games and Corgis)
(I promise.. eventually I’ll post infosec content. But right now it’s Board Games and Corgis)
Her royal highness in all her majesty
November 24, 2024 at 2:10 AM
Her royal highness in all her majesty
Howdy folks! I'm a malware analyst focused on critical infrastructure threats and ICS/OT malware.
Aside from studying reverse engineering, I lift weights, play a lot of board games and try to keep my philosopher dog, Velma, entertained.
Here's an example of my work:
www.dragos.com/blog/analyzi...
Aside from studying reverse engineering, I lift weights, play a lot of board games and try to keep my philosopher dog, Velma, entertained.
Here's an example of my work:
www.dragos.com/blog/analyzi...
November 23, 2024 at 9:57 PM
Howdy folks! I'm a malware analyst focused on critical infrastructure threats and ICS/OT malware.
Aside from studying reverse engineering, I lift weights, play a lot of board games and try to keep my philosopher dog, Velma, entertained.
Here's an example of my work:
www.dragos.com/blog/analyzi...
Aside from studying reverse engineering, I lift weights, play a lot of board games and try to keep my philosopher dog, Velma, entertained.
Here's an example of my work:
www.dragos.com/blog/analyzi...