DEF CON early bird pricing ends soon! Register for Everyday Ghidra Windows Ghidra Reverse Engineering!

We released part of Recon 2025 Video on youtube https://t.co/AR0vzkkVUP. We are getting ready to announce Recon 2026 https://t.co/WxAPSuMXrH.

At #OBTS John McIntosh (@clearbluejar) from @clearseclabs demo’d his pipeline that uses AI, ipsw and ghidriff to auto-extract and diff Apple firmware — rapidly reveals real code changes behind Apple security fixes and to get actionable root-cause intel. Super clever stuff!

New paper just dropped on arXiv featuring my open‑source tool #ghidriff 👀 "Binary Diff Summarization using Large Language Models" The authors show how patch diffing provides the perfect context for LLMs that turn raw binary changes into structured, explainable insights. 🧵

John (@clearbluejar) already uncovered what Apple fixed in CVE-2025-43400 on iOS/macOS 26.0.1 🍎🐛🔬🧠 And at #OBTS v8 he’ll show exactly how, with case studies, in his talk: “Reverse Engineering Apple Security Updates” Patch first, then make sure not to miss his #OBTS talk!

Breaking down the patch for CVE-2025-43400, a FontParser vulnerability in the latest macOS Tahoe and iOS 26.0.1 update. The issue: A malicious font could cause an out-of-bounds write, leading to memory corruption. Let's look at the fix. 🧵

New tool "read_bytes" coming soon to pyghidra-mcp. See examples of pyghidra parsing Mach-O headers and interpreting them.

pyghidra-mcp v0.1.9 released - Now supports async binary import. Add binaries to your Ghidra project without restarting your analysis session. 👀🔥

pyghidra-mcp: headless Model Context Protocol (MCP) server for Ghidra by @clearbluejar Blog post: https://t.co/sSqlJnxbDL Repository: https://t.co/reNui9NTmM #infosec

pyghidra-mcp from @clearbluejar 🔥 https://t.co/aR1mUOreQo

pyghidra-mcp: headless Model Context Protocol (MCP) server for Ghidra Blog post: https://t.co/sSqlJnxbDL Repository: https://t.co/reNui9NTmM Credits @clearbluejar #infosec

new blog post, new tool 👀 Unlock project-wide, multi-binary analysis with pyghidra-mcp, a headless Ghidra MCP server for automated, LLM-assisted reverse engineering. https://t.co/YQs9zVH1c7

Been testing local LLM tool calling with openai/gpt-oss-20b (even at 4-bit) using pyghidra-mcp. It made 22 tool calls in a one-shot run to analyze multiple binaries and traced the call chain from user-mode through kernelbase.dll to the final syscall in ntdll! 🤯

📢 Incoming release: pyghidra‑mcp 🛠️ Meet your new RE best friend. Harness frontier models or a local gpt-oss-20b llm brain to power Ghidra multi‑binary, project‑wide analysis. You’ll be slicing through code like butter 🧈😆 ETA: imminent. Keep your shells warm 🔥🐙⚡🐉

New ghidrecomp release with support for Ghidra 11 👀

First time in Ibiza for #OBTS 🌴☀️ and couldn’t be more stoked! Honored to be speaking alongside some brilliant researchers. In my new talk I'll explore Apple Security Updates and how to tear them open for intel. Bring your sunscreen and your curiosity😎🧠

DEF CON early bird pricing ends soon! Register for Everyday Ghidra Windows Ghidra Reverse Engineering!

Tick-tock... 10 days left until the Everyday Ghidra Virtual Course begins! Still debating? Here's your sign: grab 10% off with this last-minute coupon → em-2xilxwrrwuzgte58 Secure your spot now 🔐 https://t.co/kcuf49UobM

#ghidriff v1.0.0 released with full support for Ghidra 11.4 🔥 Release : https://t.co/5FKPpCOFsL 👀

Tick-tock... 10 days left until the Everyday Ghidra Virtual Course begins! Still debating? Here's your sign: grab 10% off with this last-minute coupon → em-2xilxwrrwuzgte58 Secure your spot now 🔐 https://t.co/kcuf49UobM

Had a fantastic time teaching participants in my Ghidra CLI-to-MCP workshop. Huge thanks to @reconmtl for the opportunity! Best part? Connecting afterward to brainstorm future ideas with so many brilliant minds. 🔥