🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Registration is now open for #BHUSA training. I'm looking forward to another year of teaching Ghidra in Vegas! Please come and join me if you want to get started using Ghidra for your reversing needs: blackhat.com/us-23/training…

I've published a sneak peak of a new exercise I'll be running in my Ghidra class with Black Hat. This one covers using Ghidra Debugger to analyze a sketchy lib file. Sample file included for practice, hoping someone will find the hidden URL! medium.com/@cy1337/a-guid… #BHUSA

I've posted another Ghidra challenge in preparation for 'A Guide to Reversing With Ghidra' at #BHUSA this summer. Have a read and try for yourself at link.medium.com/jjTrhleSSyb

For this week's Black Hat 2023 Ghidra training preview, I've releases a vulnerability discovery challenge. It was a lot of fun making this and I hope you all enjoy hacking it! medium.com/@cy1337/vulner… #BHUSA

In our newest USENIX paper, @XoIMEX, Simon Nachtigall, Marcel Maehren, Nurullah Erinola, @ic0nz1, Jörg Schwenk, and me took a look at the TLS session ticket deployment in the wild and found diverse vulnerabilities: upb-syssec.github.io/blog/2023/sess… (1/12)

I've posted a walkthrough about understanding and patching a bug using Ghidra's disassembly. Please enjoy following along and I hope you'll consider joining me this summer in Vegas for my Black Hat #BHUSA Ghidra training. medium.com/@cy1337/patchi…

Update on my recent vuln discovery challenge: It's now containerized! Details are in my latest Black Hat #BHUSA Ghidra training blog post: Vulnerability Analysis with Ghidra Scripting at medium.com/@cy1337/vulner…

Here is a walkthrough of writing a Ghidra Python script to find calls to potentially dangerous libc functions as the 5th in my Black Hat #BHUSA training preview. medium.com/@cy1337/vulner…

The dedicated emulator tool in 10.3 is also really cool! I made a short post this morning to help people get started using it with an example. medium.com/@cy1337/first-…

Craig Young I made a YouTube video based off your Medium Blog Post on the Ghidra Emulator. youtu.be/dZpFN_2lZt0

This week's post is about unpacking a Metasploit payload with Ghidra and then resolving syscall numbers in the shellcode for easier analysis. Check it out on Medium at medium.com/@cy1337/unpack…

Unpacking Shellcode from MSFVenom XOR Payload with Ghidra Emulator following a blog post from Craig Young youtu.be/eyHFuTi59k4 #CyberSecurity #Ghidra #Linux #InfoSec #Kali

H/T to Jack for adapting another post into an excellent video walkthrough!

Cybersecurity may seem like a vast field, but there are frequent chances to reconnect with old friends at conferences or while working on projects. Tyler Reguly reflects on the collaborative nature of the cybersecurity community. tripwire.com/state-of-secur… cc Craig Young

Just updated my Black Hat training slides with an example of decrypting Mirai config values using #Ghidra 10.3's new Emulator tool. Stay tuned for some related blogs in coming weeks after I'm done updating the class for 10.3! #bhusa blackhat.com/us-23/training…

Check out my intro on fuzzing compiled code with AFL QEMU: medium.com/@cy1337/a-basi… This is a sneak peak of the content I'm working on for Black Hat this summer.

I just posted another example from my upcoming class. A write-up on generating a GDB Python script from Ghidra Python to enumerate attack surface in a program. medium.com/@cy1337/a-basi… This is the last week for early bird pricing, so if you want to dive deeper, sign up today!

My first snippet of new content for my Black Hat 2025 training is now online. This post gives an example of inspecting PCode from a Ghidra script to find questionable heap allocations. Check it out on Medium and GitHub: medium.com/@cy1337/tracin… github.com/cy1337/MallocO…

Looking for a basic guide to using AFL++ Unicorn mode to fuzz a function running in an RTOS? Have I got some great news for you... Medium: medium.com/@cy1337/a-basi… GitHub: github.com/cy1337/basic_a…

I scanned FastCGI with the Ghidra malloc checking script from my upcoming #BHUSA class and it called out the sketchy malloc exploited by Shiro of Synacktiv as #3 in a list of 6. medium.com/@cy1337/spotti… Script Source: github.com/cy1337/MallocO…