Sam Thomas
@xorpse.ghost.sh
Reposted by Sam Thomas
🔄In case you missed it...
IDA Domain API.
This new open-source Python API is designed to make scripting in IDA simpler, more consistent, and more natural.
Check out the key features, code examples, documentation and more:
ida-domain.docs.hex-rays.com
IDA Domain API.
This new open-source Python API is designed to make scripting in IDA simpler, more consistent, and more natural.
Check out the key features, code examples, documentation and more:
ida-domain.docs.hex-rays.com
November 5, 2025 at 10:44 PM
🔄In case you missed it...
IDA Domain API.
This new open-source Python API is designed to make scripting in IDA simpler, more consistent, and more natural.
Check out the key features, code examples, documentation and more:
ida-domain.docs.hex-rays.com
IDA Domain API.
This new open-source Python API is designed to make scripting in IDA simpler, more consistent, and more natural.
Check out the key features, code examples, documentation and more:
ida-domain.docs.hex-rays.com
Reposted by Sam Thomas
Talk Tomorrow: "Scalable Static Analysis and High-Performance Logic Programming" (github.com/kmicinski/mi...)
github.com
October 28, 2025 at 6:58 PM
Talk Tomorrow: "Scalable Static Analysis and High-Performance Logic Programming" (github.com/kmicinski/mi...)
Reposted by Sam Thomas
📢 The Hex-Rays IDA Plugin Contest is open!
We've updated the submission process, added more prizes, and IDA Free users can now enter to win.
📅 Submissions close: January 15, 2026
Get the full update here: hex-rays.com/plugin-contest
Good luck!
We've updated the submission process, added more prizes, and IDA Free users can now enter to win.
📅 Submissions close: January 15, 2026
Get the full update here: hex-rays.com/plugin-contest
Good luck!
October 23, 2025 at 7:36 PM
📢 The Hex-Rays IDA Plugin Contest is open!
We've updated the submission process, added more prizes, and IDA Free users can now enter to win.
📅 Submissions close: January 15, 2026
Get the full update here: hex-rays.com/plugin-contest
Good luck!
We've updated the submission process, added more prizes, and IDA Free users can now enter to win.
📅 Submissions close: January 15, 2026
Get the full update here: hex-rays.com/plugin-contest
Good luck!
Reposted by Sam Thomas
🚨 EURECOM is recruiting a PhD student (and master-level interns) on verification and testing at the hardware-software boundary
🌄 Amazing location between sea & mountain
💡 3-year position
🌍 International environment (no French required!)
You're a curious and motivated student? Reach out!
🌄 Amazing location between sea & mountain
💡 3-year position
🌍 International environment (no French required!)
You're a curious and motivated student? Reach out!
September 22, 2025 at 9:50 AM
🚨 EURECOM is recruiting a PhD student (and master-level interns) on verification and testing at the hardware-software boundary
🌄 Amazing location between sea & mountain
💡 3-year position
🌍 International environment (no French required!)
You're a curious and motivated student? Reach out!
🌄 Amazing location between sea & mountain
💡 3-year position
🌍 International environment (no French required!)
You're a curious and motivated student? Reach out!
Reposted by Sam Thomas
I'm happy to share that LIEF 0.17.0 is out: lief.re/blog/2025-09...
September 15, 2025 at 3:49 AM
I'm happy to share that LIEF 0.17.0 is out: lief.re/blog/2025-09...
I'm pleased to announce a new release of the Rust bindings for
@hex-rays.bsky.social IDA SDK! This release includes v9.2 compatibility, and a number of new features and fixes.
Code: git.idalib.rs
Thank you to our contributors: @withzombies.bsky.social Cole Leavitt Irate-Walrus @yeggor.bsky.social
@hex-rays.bsky.social IDA SDK! This release includes v9.2 compatibility, and a number of new features and fixes.
Code: git.idalib.rs
Thank you to our contributors: @withzombies.bsky.social Cole Leavitt Irate-Walrus @yeggor.bsky.social
GitHub - binarly-io/idalib: Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.x’s idalib
Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.x’s idalib - binarly-io/idalib
git.idalib.rs
September 12, 2025 at 11:07 PM
I'm pleased to announce a new release of the Rust bindings for
@hex-rays.bsky.social IDA SDK! This release includes v9.2 compatibility, and a number of new features and fixes.
Code: git.idalib.rs
Thank you to our contributors: @withzombies.bsky.social Cole Leavitt Irate-Walrus @yeggor.bsky.social
@hex-rays.bsky.social IDA SDK! This release includes v9.2 compatibility, and a number of new features and fixes.
Code: git.idalib.rs
Thank you to our contributors: @withzombies.bsky.social Cole Leavitt Irate-Walrus @yeggor.bsky.social
Reposted by Sam Thomas
This looks like a cool way to declaratively orchestrate data processing: snakemake.github.io
How haven't I heard of this before?
How haven't I heard of this before?
Snakemake
snakemake.github.io
September 11, 2025 at 2:21 PM
This looks like a cool way to declaratively orchestrate data processing: snakemake.github.io
How haven't I heard of this before?
How haven't I heard of this before?
Reposted by Sam Thomas
At USENIX Security? Then check out:
Studying the Use of CVEs in Academia, won distinguished paper award www.usenix.org/conference/u...
Discovering and Exploiting Vulnerable Tunnelling Hosts, won most innovative research Pwnie @ DEFCON www.usenix.org/conference/u...
Big thanks to all co-authors!!
Studying the Use of CVEs in Academia, won distinguished paper award www.usenix.org/conference/u...
Discovering and Exploiting Vulnerable Tunnelling Hosts, won most innovative research Pwnie @ DEFCON www.usenix.org/conference/u...
Big thanks to all co-authors!!
August 13, 2025 at 10:30 PM
At USENIX Security? Then check out:
Studying the Use of CVEs in Academia, won distinguished paper award www.usenix.org/conference/u...
Discovering and Exploiting Vulnerable Tunnelling Hosts, won most innovative research Pwnie @ DEFCON www.usenix.org/conference/u...
Big thanks to all co-authors!!
Studying the Use of CVEs in Academia, won distinguished paper award www.usenix.org/conference/u...
Discovering and Exploiting Vulnerable Tunnelling Hosts, won most innovative research Pwnie @ DEFCON www.usenix.org/conference/u...
Big thanks to all co-authors!!
Reposted by Sam Thomas
seeing my @vxundergroundre.bsky.social Black Mass article “EFI Byte Code Virtual Machine - A Monster Emerges” in the print copy of vol III at long last has me verklempt.
All the blood,sweat+tears that I poured into writing the first UEFI EBC virus were v worth it. 🖤
All the blood,sweat+tears that I poured into writing the first UEFI EBC virus were v worth it. 🖤
July 26, 2025 at 9:03 PM
seeing my @vxundergroundre.bsky.social Black Mass article “EFI Byte Code Virtual Machine - A Monster Emerges” in the print copy of vol III at long last has me verklempt.
All the blood,sweat+tears that I poured into writing the first UEFI EBC virus were v worth it. 🖤
All the blood,sweat+tears that I poured into writing the first UEFI EBC virus were v worth it. 🖤
Reposted by Sam Thomas
Today I’m celebrating one year of #rust! 🦀
I started learning it last summer, and since then, I’ve pretty much stopped programming in any other language. Over the past year, I’ve gone from playing with the basics to building some (hopefully 😜) useful […]
[Original post on infosec.exchange]
I started learning it last summer, and since then, I’ve pretty much stopped programming in any other language. Over the past year, I’ve gone from playing with the basics to building some (hopefully 😜) useful […]
[Original post on infosec.exchange]
July 15, 2025 at 8:47 PM
Today I’m celebrating one year of #rust! 🦀
I started learning it last summer, and since then, I’ve pretty much stopped programming in any other language. Over the past year, I’ve gone from playing with the basics to building some (hopefully 😜) useful […]
[Original post on infosec.exchange]
I started learning it last summer, and since then, I’ve pretty much stopped programming in any other language. Over the past year, I’ve gone from playing with the basics to building some (hopefully 😜) useful […]
[Original post on infosec.exchange]
I'm pleased to announce a new version of the Rust bindings for IDA Pro! With:
- Improved strings, metadata, and core APIs.
- Support for the names API.
Thank you to @raptor.infosec.exchange.ap.brid.gy & Willi Ballenthin for contributing!
Docs: idalib.rs
Code: git.idalib.rs
- Improved strings, metadata, and core APIs.
- Support for the names API.
Thank you to @raptor.infosec.exchange.ap.brid.gy & Willi Ballenthin for contributing!
Docs: idalib.rs
Code: git.idalib.rs
idalib documentation
idalib.rs
July 15, 2025 at 1:12 AM
I'm pleased to announce a new version of the Rust bindings for IDA Pro! With:
- Improved strings, metadata, and core APIs.
- Support for the names API.
Thank you to @raptor.infosec.exchange.ap.brid.gy & Willi Ballenthin for contributing!
Docs: idalib.rs
Code: git.idalib.rs
- Improved strings, metadata, and core APIs.
- Support for the names API.
Thank you to @raptor.infosec.exchange.ap.brid.gy & Willi Ballenthin for contributing!
Docs: idalib.rs
Code: git.idalib.rs
Reposted by Sam Thomas
Our research on open tunneling servers got nominated for the Most Innovative Research award :)
The work will be presented by Angelos Beitis at Black Hat and also at USENIX Security
Brief summary and code: github.com/vanhoefm/tun...
Paper: papers.mathyvanhoef.com/usenix2025-t...
The work will be presented by Angelos Beitis at Black Hat and also at USENIX Security
Brief summary and code: github.com/vanhoefm/tun...
Paper: papers.mathyvanhoef.com/usenix2025-t...
July 12, 2025 at 8:17 PM
Our research on open tunneling servers got nominated for the Most Innovative Research award :)
The work will be presented by Angelos Beitis at Black Hat and also at USENIX Security
Brief summary and code: github.com/vanhoefm/tun...
Paper: papers.mathyvanhoef.com/usenix2025-t...
The work will be presented by Angelos Beitis at Black Hat and also at USENIX Security
Brief summary and code: github.com/vanhoefm/tun...
Paper: papers.mathyvanhoef.com/usenix2025-t...
Reposted by Sam Thomas
CTADL - a Datalog-based interprocedural static taint analysis engine for Java/Android bytecode (via JADX) and Pcode (via Ghidra)
Code: github.com/sandialabs/c...
Talk (via @krismicinski.bsky.social): youtu.be/3ec9VfMUVa8?...
Code: github.com/sandialabs/c...
Talk (via @krismicinski.bsky.social): youtu.be/3ec9VfMUVa8?...
GitHub - sandialabs/ctadl: CTADL is a static taint analysis tool
CTADL is a static taint analysis tool. Contribute to sandialabs/ctadl development by creating an account on GitHub.
github.com
July 9, 2025 at 10:10 AM
CTADL - a Datalog-based interprocedural static taint analysis engine for Java/Android bytecode (via JADX) and Pcode (via Ghidra)
Code: github.com/sandialabs/c...
Talk (via @krismicinski.bsky.social): youtu.be/3ec9VfMUVa8?...
Code: github.com/sandialabs/c...
Talk (via @krismicinski.bsky.social): youtu.be/3ec9VfMUVa8?...
Reposted by Sam Thomas
May 25-27, 2025, I hosted an event, the "Minnowbrook Logic Programming Seminar," in Blue Mountain Lake, NY. I recorded 11 talks on Datalog-related interests, totaling over 9+ hours of video, which I have just now published on YouTube youtu.be/3ec9VfMUVa8
Minnowbrook Logic Programming Seminar (Supercut w/ Extras)
YouTube video by Kristopher Micinski
youtu.be
July 7, 2025 at 6:50 PM
May 25-27, 2025, I hosted an event, the "Minnowbrook Logic Programming Seminar," in Blue Mountain Lake, NY. I recorded 11 talks on Datalog-related interests, totaling over 9+ hours of video, which I have just now published on YouTube youtu.be/3ec9VfMUVa8
Reposted by Sam Thomas
Exploring fault injection on ESP32 V3!
Inspired by Delvaux work, we tested voltage #glitching as an attack vector. With advanced triggers & GDB, we achieved a ~1.5% success rate. #hardware #faultinjection is becoming more practical! […]
Inspired by Delvaux work, we tested voltage #glitching as an attack vector. With advanced triggers & GDB, we achieved a ~1.5% success rate. #hardware #faultinjection is becoming more practical! […]
Original post on infosec.exchange
infosec.exchange
June 18, 2025 at 8:24 AM
Exploring fault injection on ESP32 V3!
Inspired by Delvaux work, we tested voltage #glitching as an attack vector. With advanced triggers & GDB, we achieved a ~1.5% success rate. #hardware #faultinjection is becoming more practical! […]
Inspired by Delvaux work, we tested voltage #glitching as an attack vector. With advanced triggers & GDB, we achieved a ~1.5% success rate. #hardware #faultinjection is becoming more practical! […]
Reposted by Sam Thomas
🚨 Blog Post: ""A Human Study of Automatically Generated Decompiler Annotations" Published at DSN 2025" https://edmcman.github.io/blog/2025-06-16--a-human-study-of-automatically-generated-decompiler-annotations-published-at-dsn-2025/
June 16, 2025 at 4:46 PM
🚨 Blog Post: ""A Human Study of Automatically Generated Decompiler Annotations" Published at DSN 2025" https://edmcman.github.io/blog/2025-06-16--a-human-study-of-automatically-generated-decompiler-annotations-published-at-dsn-2025/
Reposted by Sam Thomas
ONLY 5 DAYS LEFT
🚨 The Crime and Policing Bill is in the House of Commons on Tuesday 17.06.
We have 5 days left to email MPs to act.
MPs right now have the power to protect our protest rights.
We can’t let them ignore us.
📝 Take action: www.amnesty.org.uk/actions/emai...
🚨 The Crime and Policing Bill is in the House of Commons on Tuesday 17.06.
We have 5 days left to email MPs to act.
MPs right now have the power to protect our protest rights.
We can’t let them ignore us.
📝 Take action: www.amnesty.org.uk/actions/emai...
June 12, 2025 at 2:10 PM
ONLY 5 DAYS LEFT
🚨 The Crime and Policing Bill is in the House of Commons on Tuesday 17.06.
We have 5 days left to email MPs to act.
MPs right now have the power to protect our protest rights.
We can’t let them ignore us.
📝 Take action: www.amnesty.org.uk/actions/emai...
🚨 The Crime and Policing Bill is in the House of Commons on Tuesday 17.06.
We have 5 days left to email MPs to act.
MPs right now have the power to protect our protest rights.
We can’t let them ignore us.
📝 Take action: www.amnesty.org.uk/actions/emai...
Reposted by Sam Thomas
Another Crack in the Chain of Trust: Uncovering (Yet Another) #secureboot Bypass
https://www.binarly.io/blog/another-crack-in-the-chain-of-trust
https://www.binarly.io/blog/another-crack-in-the-chain-of-trust
Another Crack in the Chain of Trust: Uncovering (Yet Another) Secure Boot Bypass
Comments
www.binarly.io
June 11, 2025 at 5:13 AM
Another Crack in the Chain of Trust: Uncovering (Yet Another) #secureboot Bypass
https://www.binarly.io/blog/another-crack-in-the-chain-of-trust
https://www.binarly.io/blog/another-crack-in-the-chain-of-trust
Reposted by Sam Thomas
#hydroph0bia (CVE-2025-4275) - a trivial #secureboot bypass for UEFI-compatible firmware based on Insyde #h2o, part 1
https://coderush.me/hydroph0bia-part1/
https://coderush.me/hydroph0bia-part1/
Hydroph0bia (CVE-2025-4275) - a trivial SecureBoot bypass for UEFI-compatible firmware based on Insyde H2O, part 1
coderush.me
June 11, 2025 at 5:53 AM
#hydroph0bia (CVE-2025-4275) - a trivial #secureboot bypass for UEFI-compatible firmware based on Insyde #h2o, part 1
https://coderush.me/hydroph0bia-part1/
https://coderush.me/hydroph0bia-part1/
Reposted by Sam Thomas
New blog post: noratrieb.dev/blog/posts/e...
ELF Linking and Symbol Resolution
A summary on how linkers resolve symbols on Unix-like platforms
noratrieb.dev
June 9, 2025 at 8:27 PM
New blog post: noratrieb.dev/blog/posts/e...
Reposted by Sam Thomas
My greatest achievement so far in the #rust ecosystem: the “security” category in crates.io is gaining traction 😉
https://crates.io/search?q=category%3Asecurity&sort=downloads
https://crates.io/search?q=category%3Asecurity&sort=downloads
June 5, 2025 at 7:46 PM
My greatest achievement so far in the #rust ecosystem: the “security” category in crates.io is gaining traction 😉
https://crates.io/search?q=category%3Asecurity&sort=downloads
https://crates.io/search?q=category%3Asecurity&sort=downloads
Reposted by Sam Thomas
[Blog Post] New high-level API in LIEF that allows the
creation of DWARF files. Additionally, I present two plugins designed to export
program information from Ghidra and BinaryNinja into a DWARF file.
lief.re/blog/2025-05...
(Bonus: DWARF file detailing my reverse engineering work on DroidGuard)
creation of DWARF files. Additionally, I present two plugins designed to export
program information from Ghidra and BinaryNinja into a DWARF file.
lief.re/blog/2025-05...
(Bonus: DWARF file detailing my reverse engineering work on DroidGuard)
DWARF as a Shared Reverse Engineering Format
This blog post introduces a new API in LIEF to create DWARF files
lief.re
May 27, 2025 at 1:51 PM
[Blog Post] New high-level API in LIEF that allows the
creation of DWARF files. Additionally, I present two plugins designed to export
program information from Ghidra and BinaryNinja into a DWARF file.
lief.re/blog/2025-05...
(Bonus: DWARF file detailing my reverse engineering work on DroidGuard)
creation of DWARF files. Additionally, I present two plugins designed to export
program information from Ghidra and BinaryNinja into a DWARF file.
lief.re/blog/2025-05...
(Bonus: DWARF file detailing my reverse engineering work on DroidGuard)
Reposted by Sam Thomas
All papers should publish their code. Help realize this by becoming an artifact reviewer at NDSS'26, apply here: docs.google.com/forms/d/e/1F...
You'll review artifacts of accepted papers. We especially encourage junior/senior PhD students & PostDocs to help. Distinguished reviews will get awards!
You'll review artifacts of accepted papers. We especially encourage junior/senior PhD students & PostDocs to help. Distinguished reviews will get awards!
Self-nomination for the Artifact Evaluation Committee of NDSS 2026
We are looking for members of the Artifact Evaluation Committee (AEC) of NDSS 2026.
The Network and Distributed System Security symposium adopts an Artifact Evaluation (AE) process allowing authors t...
docs.google.com
May 25, 2025 at 1:25 PM
All papers should publish their code. Help realize this by becoming an artifact reviewer at NDSS'26, apply here: docs.google.com/forms/d/e/1F...
You'll review artifacts of accepted papers. We especially encourage junior/senior PhD students & PostDocs to help. Distinguished reviews will get awards!
You'll review artifacts of accepted papers. We especially encourage junior/senior PhD students & PostDocs to help. Distinguished reviews will get awards!
We're are happy to announce a new release of our #Rust bindings for idalib.
What's new:
- New APIs for working with IDBs, segments, and more
- Rust 2024 support
- New homepage: idalib.rs
H/T to our contributors @yeggor.bsky.social & @raptor.infosec.exchange.ap.brid.gy
github.com/binarly-io/i...
What's new:
- New APIs for working with IDBs, segments, and more
- Rust 2024 support
- New homepage: idalib.rs
H/T to our contributors @yeggor.bsky.social & @raptor.infosec.exchange.ap.brid.gy
github.com/binarly-io/i...
GitHub - binarly-io/idalib: Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.x’s idalib
Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.x’s idalib - binarly-io/idalib
github.com
May 21, 2025 at 10:28 PM
We're are happy to announce a new release of our #Rust bindings for idalib.
What's new:
- New APIs for working with IDBs, segments, and more
- Rust 2024 support
- New homepage: idalib.rs
H/T to our contributors @yeggor.bsky.social & @raptor.infosec.exchange.ap.brid.gy
github.com/binarly-io/i...
What's new:
- New APIs for working with IDBs, segments, and more
- Rust 2024 support
- New homepage: idalib.rs
H/T to our contributors @yeggor.bsky.social & @raptor.infosec.exchange.ap.brid.gy
github.com/binarly-io/i...