I've been working on this for 5 years, and it's finally out! I wrote a dark fantasy book (no computers involved), and it's the hardest thing I have ever done. I'm extremely proud of the final result. (But it's in French, for now.) https://t.co/EBRYfz6wXw

Interesting excerpt from a US roundtable on private sector-led cyber-offense ( https://t.co/zPOkZciZRN). The Chinese-ecosystem functions similarly. Personally, I'm always very wary of offloading state prerogatives to the private sector.

Visit Espolòn Tequila at Family Style for signature cocktails, including spicy (& not so spicy) ‘margs and palomas. Powered by @EspolonTequila

The website is back up! This was a lot more work than I expected, as moving everything to a NFS share had unforeseen implications. Anyway, let's go for 10 more years!

https://t.co/if3sKRTZjD is down tonight... because we've hit the hard drive limit! This is good news (sort of): there are now 200GB of samples analyzed on the website! I'll move the server tomorrow to another server with much more storage!

https://t.co/fm9HCSMfVA

@greglesnewich Thanks for the question! If just one, it would IDA Pro with Gepetto by @JusticeRage and OpenAI integration. That and code similarity.

Gepetto 1.5.0 is out! This is the first stable release which includes agentic reversing / LLM tools. There are a ton of improvements so make sure to update if you haven't done so in a while!

Quds News Network reports that a recent report revealed "that AppCloud, an Israeli application developed by IronSource, comes pre-installed on certain Samsung devices, particularly Galaxy A and Galaxy M models, and cannot be fully removed. The app automatically collects user

Prompt if you want to try it out: Analyze this crackme, starting from the main function, and using all the tools at your disposal, try to figure out what is the expected password. Rename everything you can in the process. File:

Reverser friends, Gepetto has made huge leaps in the last weeks. I now consider it to be a decent IDA Pro agent. With zero interaction (gpt-5), it solved a crackme all on its own. I opened IDA, typed in the prompt, and it did everything.

Right now, the only tools available are getting the current EA and a function's decompiled code. It's still bleeding edge, but try it out! https://t.co/lEelTim1FV

The plan for Gepetto has always been to go further in the agentic direction. I've started exposing the context of the RE session to the LLM. It may not look like much right now, but ~soon the model will create structures for you from the CLI and recast variables 🤯

YaraValidator update! Supports YARA up to v4.5.4. Supports YARA-X up to v1.5.0 https://t.co/9s0pQTxnZY

Announcing #Pwn2Own Ireland for 2025! We return to the Emerald Isle with our new partner @Meta and a $1,000,000 WhatsApp bounty. Yes - one million dollars. Plus new USB attack vectors on phones and more. Check out the details at

Check out our analysis of the SharePoint ToolShell vulnerabilities: how the ITW exploit works, how it was patched, and why the initial patches could be easily bypassed

A few weeks ago, I was responding to a cybersecurity incident - $500,000 have been stolen from a #blockchain developer. The infected operating system was freshly installed, and the victim was vigilant about cybersecurity. How could this happen? New supply chain attack? [1/6]

📣 We are really happy and proud to announce the schedule of our 2025 edition! 👉 Program: https://t.co/M6uLMMaIHI 👉 Book your (free) seat here 🎟️: https://t.co/eyqTRpcv9L 📅 July 1 to 3, 2025 📍 Lille, FR TL;DR: check our program & book your seat! ✅ 1/2

We published a new report, covering #Gamaredon's #PteroLNK malware, used in a recent campaign. The Russian APT group continues active operations against Ukrainian targets through April 2025 1/4

Here is one of my favorite @ChatGPTapp tricks. When a website doesn't send you a calendar invite for an event, just paste the email or event details into ChatGPT and ask it to generate an ical file.

NEW: Last month two investigative journalists at @BIRNSrbija were targeted with NSO's Pegasus spyware. NSO Group says it spyware is sold only to "vetted government clients". This follows a pattern of hacking and surveillance by Serbian authorities They haven't gone away...