🔎From Hidden Semantics to Structured Insights✨ By combining static analysis techniques and tailored heuristic improvements, we've significantly enhanced the precision of type inference, enabling more effective vulnerability triage. lukas seidel Sam Thomas 👏 binarly.io/blog/type-infe…

Sooooo, our Usenix Security '25 paper on automated synthesis of code-reuse attacks has been pre-published ✨ usenix.org/conference/use…

Our Deep Vulnerability Analysis (DVA) technology automatically identified 𝗖𝗩𝗘-𝟮𝟬𝟮𝟱-𝟯𝟬𝟱𝟮 as unknown zero-day vulnerability🪄✨ showcase.binarly.io/share/b8XkNJQ6…

It’s great to see Sam Thomas #idalib gaining traction across the industry 🚀 Let’s develop more Rust-based tools for RE 🦀

I love Binarly team! To provide better contextualization, we now have full Lua support for semantic-driven code detection rules 🪄✨

My first blogpost on the Source Engine is out🔥! (hopefully there'll be more heh) Exploiting the Source Engine’s network protocol to leak vtable pointers – protobuf quirks, ConVar abuses, and good old engine weirdness. mrnbayoh.github.io/blog/source-en…

new IDA license, who dis?

In our last blog post, our colleague Gianluca shares the story of a lucky discovery: a bug initially spotted during a routine assessment turned out to be a high impact vulnerability in Microsoft Graph API — earning a $3,000 bounty. security.humanativaspa.it/export-to-pdf-…

I'm pleased to announce a new version of the Rust bindings for Hex-Rays SA IDA Pro! With: - Improved strings, metadata, and core APIs - Support for the name API Thank you to [email protected] & Willi Ballenthin for contributing! Docs: idalib.rs Code: git.idalib.rs

Google Wifi Pro - Glitching from Root to EL3 - Part 1 In this first post, we explain in detail, how we were able to inject EM glitches in order to characterize Qualcomm's IPQ5018 SoC susceptibility to EM glitches. raelize.com/blog/google-wi…

In his latest article, "Specifications Don't Exist," Galois Principal Scientist Mike Dodds explores formal specifications, informal specifications, and the inescapable burden of having to clarify our ideas. Give it a read! galois.com/articles/speci…

Forgot to mentioned that our talk "How to secure unique ecosystem shipping 1 billion+ cores?" has been accepted to DEF CON #defcon33 as well! defcon.org/html/defcon-33…

Today I’m celebrating one year of #Rust! 🦀 I started learning it last summer, and since then, I’ve pretty much stopped programming in any other language. I’ve documented my journey in this series of articles: security.humanativaspa.it/tag/rust/ Here’s to many more years with Rust! 🥂

Back from PLDI 2025, where Frédéric Recoules and I had the pleasure to give a tutorial on BINSEC and binary-level symbolic execution. Here it is, playable in your browser: binsec.github.io/tutorial-pldi2…

In our last post, Federico Dotta shares some PoCs of GenAI/LLM security issues found in real-world assessments conducted for corporate clients, with a focus on vulnerabilities that can be exploited to gain unauthorized access to data, resources, and services. security.humanativaspa.it/attacking-gena…

More news coming to you from the soon-to-be-released IDA 9.2: we're taking the first step toward making development on top of #IDA more accessible—by open-sourcing the C++ SDK and IDAPython: eu1.hubs.ly/H0m1XKc0 #ReverseEngineering #DevTools #Infosec #Cybersecurity

This is really great news, happy to see the SDK becoming open source ♥

[New Blog Post] Verified Assembly 2: Memory, RISC-V, Cuts for Invariants, and Ghost Code philipzucker.com/asm_verify2/ #ghidra #assembly

If you know junior folks wanting to get into ARM/x86 assembly⚙️but don't quite know how.. or maybe they prefer to consume content in a video form? Get them to check this out!

USENIX Security 2025 is starting in 1h and something! My amazing student GuilhemLacombe will present our work entitled "Attacker Control and Bug Prioritization" on August 14 (4pm session, track 2). Want to know more about assessing the danger of a vulnerability without