Learn how to reverse engineer malware: YouTube: Twitch: Mastodon: GitHub:

Link to stream:

We've uploaded our Time Travel Debugging in Binary Ninja stream with Xusheng Li from @vector35 where we unpacked malware and analyzed anti-analysis capabilities with TTD traces. Enjoy!

C’mon…

Big thanks to @unpacme for their Yara search and @cybercentre_ca for AssemblyLine!.

Stream recording:

We've uploaded our beginner .NET malware analysis stream where we analyzed DCRat with dnSpy. Enjoy!

Huge congrats to @n0t_8fr8d for completing the Binary Ninja Edition of the Introduction to Malware Binary Triage course!

Thanks everyone for joining! Time Travel Debugging and malware analysis are a match made in heaven. We were able to unpack a malware sample from a TTD trace and find where anti-VM tricks caused it to exit in a few clicks. The recording will be up soon!.

Join us for a special stream today at 10AM EST with Xusheng Li from Vector35 where we will explore Time Travel Debugging with Binary Ninja!

Code changes for v0.3 discussed and implemented on stream:

Full stream recording:

We've uploaded our Binary Ninja MCP development stream where we added functionality to rename and read from global variables in Binary Ninja with Cursor. Check out this clip demoing these capabilities with a ransomware variant.

RT @luke92881: #TamperedChef.Another variant from recipelister/lookupkitchen. This one fork.exe from fast-forks[.]com .

RT @tonmoy0010: Been working on this Windows Registry forensics tool and thought it might help other analysts out there. Makes digging thro….

RT @struppigel: The @InvokeReversing community uncovered a malicious recipe app. It loads and executes encrypted scripts that are hidden v….

We had an awesome collaboration on the Invoke RE Discord server that looked at an interesting "RecipeLister" Adware campaign, check out the blog from Dingusxmcgee here:

Shout out to @unpacme for their fantastic Yara search and @x64dbg for debugging.

Stream recording link:

We've uploaded our beginner malware analysis stream where we analyzed a Babuk ransomware variant with IDA Pro. Enjoy!

Thanks for joining all! It was super fun! Will hopefully be doing more .NET content soon.