Colton Skees

@richinseattle @spendergrsec @dodo_sec The author actually presented two talks at DEFCON this year... this one, and then another one on eBPF exploitation("Finding and Exploiting Kernel Vulnerabilities in the eBPF Subsystem"). The repo seems to be AI generated too github.com/poppopjmp/Levi… It's incredible

@ColtonSkees @spendergrsec @dodo_sec Yea this VMDragonSlayer is completely broken and never worked. The taint tracking is hardcoding TAINT_NONE and wacky hardcoded size limits even if it did work. No shadow memory, logging would be totally unoptimized.. hell the recursive path creation function isn’t even correct.

How did this AI slop get a talk at the main track @ DEFCON????????? github.com/poppopjmp/VMDr…

@spendergrsec @dodo_sec I could link to at least 100 other similar cases

@spendergrsec @dodo_sec (2) what a real implementation would look like #L186" target="_blank" rel="nofollow noopener">github.com/poppopjmp/VMDr…

Lots of frustration in the malware analysis and reverse engineering community. It's been discovered a DEFCON talk, presentation, and the code which coincided with it, was AI slop. The talk itself had hallucinated terminology which (apparently) no one at DEFCON noticed. Bad.

Happy to announce that @nicolodev and I will be giving a talk titled "Breaking Mixed Boolean-Arithmetic Obfuscation in Real-World Applications" at @reconmtl More information will follow in the coming days.

[New Blog Post] Towards an AC Egraph: Groebner, Graver and Ground Multiset Rewriting philipzucker.com/multiset_rw/ #egraph

🔴 We're at @DVConEurope! See you at today's presentation, 16.15, Forum 7. If you can't attend, here's our engineering paper: rev.ng/downloads/dvco…

My talk from the GNU Cauldron about my translation validation tool, smtgcc (github.com/kristerw/smtgcc), is now available on YouTube: youtube.com/watch?v=vrkR7j…

(2) Notably it's implemented almost entirely in C#, with managed bindings for Remill, Souper, and LLVM. It was originally intended for breaking software protectors (blog post coming about this at some point), but later repurposed.

(1) Decided to release the source code for my LLVM-based static binary analysis framework (github.com/Colton1skees/D…). It implements, among other things, an iterative control flow graph reconstruction algorithm heavily inspired by SATURN, using Remill and Souper.

Simple (github.com/SeaOfNodes) is a compiler tutorial featuring the Sea-of-Nodes IR, a Java port (@cliffclick), Go (@yardenlaif), Rust (@RobertObkircher), and C++ (@Hels15), with help from @XmiliaH, @ThaliaArchi. If you'd like to help reach out to cliffc@acm.org or on GitHub.

[New Blog Post] Acyclic Egraphs and Smart Constructors philipzucker.com/smart_construc… #egraph #compiler

What's in an e-graph? bernsteinbear.com/blog/whats-in-…

The latest few updates introduce support for high degree polynomial MBAs Example:

Today I’ve released a new simplifier for general MBAs: github.com/mazeworks-secu…

@ColtonSkees and I have been playing with the algorithms part of "Efficient Normalized Reduction and Generation of Equivalent Multivariate Binary Polynomials" by @arnaugamez et al. (@ciphernyx) providing C# (fast) and Python (matching the pseudocode) implementations. Links below.