Govind Sharma

For years, Rust binaries made reversing a nightmare. Modern decompilers only support C, lacking meaningful types, constructs, and language-specific functions. Led by @34r7hm4n, we're releasing our S&P work Oxidizer, the first deep Rust decompiler, built on angr! Interested? 🧵👇

The first release of r2unity is out! github.com/radareorg/r2un…

People said it couldn't be done Built Frida natively on Termux. No NDK, no cross-compilation. Took 2 years of failed attempts, 12 Android-specific patches, and a vacation without my laptop to figure it out. qbtau.in/posts/building…

YaraXGUI Improvements HexEditor, Yara Match Table to show all matches found. It supports more tab, yara formatting fixed as well. We can browse for rules and filter files that we want to scan this time. Hex editor is added with the goal to make it more hassle free. Within the hexeditor, we can also apply changes, do basic diffing, mark multiple regions and send to YARA editor. Also included a way to select multiple regions and gaps within each regions can be set a wildcard so we do not need to calculate each size. Can now do disassembly of selected region (capstone), draw basic CFG to do quick checks (maybe for certain obfuscation technique or unique code blocks). Simple parsing for PE and ELF file. Added a wonky and (not-so-reliable) autocomplete (NOT based off parser) but good enough I guess for my workflow). To try the new version: github.com/Owl4444/YaraXG…

Iaito 6.1.4 is out! 💥 Tons of stability improvements, new widgets, userfriendly features, brings back the debugger mode, display analysis progress and background webserver ideal for r2mcp. Full changelog github.com/radareorg/iait… #reverseengineering #radare2

It’s finally here: radare2 + Warp (warrp) ⚡️ This makes r2 the first tool outside of the binary ninja ecosystem to adopt the format. Huge thanks to Mason (from @vector35) and @trufae (@radareorg) for their invaluable feedback's during development. github.com/radareorg/warrp

After another year, another release: APKiD v3.1.0 - "AbhiTheModder" edition. Hats off to @AbhiTheModder who did all the tough work! 📃 Changelog: github.com/rednaga/APKiD/…📷 Pypi package: `$ pip install --upgrade apkid` #Android #RASP #PEiD #Obfuscation #mobilesecurity

Frida 17.9.0 & frida-tools 14.8.0 are out 🎉 Hide your frida-server in plain sight 👀 ./frida-server --listen=unix:no-rasp-gonna-find-me-here frida-ps -U "--device-option=control-endpoint=(string)unix:no-rasp-gonna-find-me-here" iOS: same idea, but `tcp:x` only

I've open sourced my #radare2 Python script for parsing .gopclntab and recovering function symbols from Go binaries, including fully stripped ones. Supports ELF, Mach-O, and PE across Go versions 1.2, 1.16, 1.18, and 1.20+ github.com/AsherDLL/r2gop… I hope you find it useful.

Syscall Tracer🔥🔥 Sometimes it’s useful to observe the system calls happening inside a given target process. Especially if the target includes some kind of Frida detection, root detection, or any other kind of Runtime Application Self-Protection (RASP). frida.re/news/2026/03/0…

Finally done with tweaking jsdeob-workbench and I think it is better in terms of user experience now. Not totally, but still good enough, I guess. Here is the link to the repository! github.com/owl4444/jsdeob… Another demo : youtu.be/7zuqKoJT2BM

Frida 17.6.0 🎉 • Major Android stability improvements • Zygote instrumentation reworked (ptrace-free, external) • No more system_server injection • Android 16 supported • New frida-tools release Details in the release notes 👇

@radareorg r2web now has better support (& UI) for Function graphs, Hex view and more... 🤘

Just public the source code for the bot. You can host your own telegram bot to decrypt iPA even on iOS 26 app github.com/34306/tele-bot…

I'll open source a bot that can decrypt app on iOS 18-26. It supports app > 2GB (by userbot) and only support Vietnam Appstore atm Require 1 device on iOS 14 with trolldecryptjb cli (included later) Tele API for upload is limited so it's a lil bit slow t.me/DecryptAppForM…

Today, Project Zero released a 0-click exploit chain for the Pixel 9. While it targets the Pixel, the 0-click bug and exploit techniques we used apply to most other Android devices. projectzero.google/2026/01/pixel-…

I wired @opencode free models (thanks!) into @radareorg MCP + r2ghidra and got surprisingly good assisted reversing. Then I Dockerized it and built a Telegram bot with two prompt agents (sec analysis, crackmes). Post: dan1t0.com/2026/01/02/Usi… Code: github.com/dan1t0/r2mcp-b…

Ringzer0 COUNTERMEASURE SPRING//2026 training is around the corner🤠 Our training, MOBILE REVERSE-ENGINEERING WITH RADARE2 & FRIDA 📲🛠️, will be **FULLY** virtual. Save the dates: 22nd-31th March 2026 Early bird tickets: ringzer0.training/countermeasure… /cc @_ringzer0 @CorelliumHQ

@JioCare @reliancejio @JioCare again saying give me number of your network team . I want to beat them. I am done with professional and peaceful part

@JioCare 5 years of nonstop garbage—calls drop like flies, internet’s dead 24/7, and your support team is dumb shit. Your network is a disgrace, your service is fraud, and your existence is a burden on Indian telecom. Stop scamming people and shut this circus down. Same in 5 year

@JioCare @JioCare please provide number/address of morons who work in network team in Bhilwara district. I want to beat them personally. Literally you are reason of my life's 99% stress. literally there are no network in 4-5 villages but these moron never fix it.