BlipsAndChitz🚀

Check out this interesting paper. We’re thinking about doing something similar! arxiv.org/abs/1909.01752

WebAssembly de-obfuscation with LLVM. Vikas Gupta & Peter Garba (@Blips_and_Chitz) reveal how to reverse Wasm obfuscation using compiler optimizations. Simplify complex code without pattern rules & tackle real-world scenarios. re-verse.sessionize.com/session/763329 #REverse2025 #Wasm #ReverseEngineering

DeepSeek R1 is giving correct simplifications for several MBAs I tried. Really impressive!

Ready to get out of the cold? Come to RE//verse and see some of our amazing lineup. re-verse.io Also stay tuned we're going to be announcing our 2 keynote speakers very soon!

@vxunderground Compile your code with movfuscator as mov is turing complete 😉

try writing a keylogger on windows that doesn't use if-else statements, while loops, for loops, do while, etc. switch statements also arent allowed

The line-up for @REverseConf is impressive, but one talk I’m particularly excited about is from Vikas Gupta and @Blips_and_Chitz: “Standing on the Shoulders of Giants: De-Obfuscating WebAssembly using LLVM” re-verse.sessionize.com/session/763329

@peter_a_goodman @HexRaysSA Congrats! Looking forward to seeing your impact on the product

I'm delighted to announce that in the new year I'll be joining @HexRaysSA as a C++ developer! IDA Pro and the Hex Rays decompiler are indispensable tools for reverse engineers -- I can't wait to work on these products and join another top notch engineering team.

How @AMD Is Taking Standard C/C++ Code To Run Directly On GPUs phoronix.com/news/AMD-Stand…

Reversing virtualized binaries is no easy task. Our intern Jack took on exploring automated devirtualization techniques, and presents in our latest blog post an efficient, modular, taint-based approach that leverages LLVM IR: blog.thalium.re/posts/llvm-pow…

(1) Decided to release the source code for my LLVM-based static binary analysis framework (github.com/Colton1skees/D…). It implements, among other things, an iterative control flow graph reconstruction algorithm heavily inspired by SATURN, using Remill and Souper.

SLOT: SMT-LLVM Optimizing Translation Slides: llvm.org/devmtg/2024-04… github.com/mikekben/SLOT

@Microsoft Thats the piece of code that was also applied for AMD and is skipped now.

@Microsoft It seems that Intel CPU specific settings were also applied in AMD CPUs and this piece of code is now wrapped with an "if" statement.

In recent ntoskrnl.exe update from KB5041587 @Microsoft introduced "Feature_Servicing_AmdDisableEarlyIBPB__private_IsEnabledDeviceUsage" and enables IBPB later on in the KiUpdateSpeculationControl function. Wondering why this gives a huge performance boost on >=Zen3 CPUs ?!

@phoronix @AMDRyzen Are you planning some gaming benchmarks? Win11 vs Linux?!

Windows 11 vs. Ubuntu vs. Arch Linux on the @AMDRyzen Ryzen 9 9950X showing some interesting results... Large distro comparison next week.

Windows 11 vs. Ubuntu 24.04 Linux Performance For The @AMDRyzen 9 9590X Ryzen 9 7950X & 9950X testing on Windows and Linux... 7950X to 9950X in 73 cross-platform tests was +14% on Linux, +10% on Windows. Some apps show interesting differences. phoronix.com/review/ryzen-9…

@lzsthw @Farenain The problem might be that it needs a correct implementation of all opcodes in unicorn/qemu which is not the case for some opcodes

This popped up on the orange site today, a C++ interpreter that uses a really interesting design: github.com/vpand/icpp It uses a project called Unicorn Engine that's an embeddable multi-cpu QEMU fork: github.com/unicorn-engine… Then it uses regular clang/llvm to "compile" the C++ to run in unicorn engine. In theory it could be a great tool for detecting CLANG's weird optimization "enhancements", and possibly an alternative to Valgrind for memory sanitization. Also mentioned on the site is CERN has their own C++ interpreter aimed at data science: root.cern It's also using an interpreter and can even run inside Jupyter to produce analysis and graphs in competition with Python: root.cern/primer/

@h0mbre_ I open-sourced my C/C++ build indexer. It has a really cool and extensive API: github.com/trailofbits/mu…

@thegrugq Must have tools on every LAN party

Same year I got my first computer :)

Just spotted two otters covered in oil after the vessel accident here in Singapore this morning. It looks really bad 😢 #singapore #oil

@JustineTunney Wasn't gcc 4.8 released in 2013 ? What is the latency on a CPU from that time ?!

What's your favorite tiny replacement for the C++ STL? You'll see in my build latency benchmarks over the last ten years that the future of the STL doesn't look good. justine.lol/dox/stl-latenc…