Sam Thomas

705 posts

Sam Thomas

@xorpse

Program analysis. Reverse engineering. Backdoor detection.

United Kingdom Katılım Aralık 2017

631 Takip Edilen675 Takipçiler

Sam Thomas retweetledi

lukas seidel@pr0me·4d

decompilers historically have poor support for language-specific constructs, beginning with C++ templates or classes, not even talking about Go or Rust. this work is astonishingly high-quality, from my first little tests it makes Rust decompilations indeed way more approachable

Zion Leonahenahe Basque@mahal0z

For years, Rust binaries made reversing a nightmare. Modern decompilers only support C, lacking meaningful types, constructs, and language-specific functions. Led by @34r7hm4n, we're releasing our S&P work Oxidizer, the first deep Rust decompiler, built on angr! Interested? 🧵👇

English

256

20.7K

Sam Thomas retweetledi

0xor0ne@0xor0ne·2 May

VulHunt by @binarly_io github.com/vulhunt-re/vul… Blog post series: binarly.io/blog/vulhunt-i… binarly.io/blog/vulhunt-i… binarly.io/blog/vulnerabi… binarly.io/blog/vulhunt-i… binarly.io/blog/agentic-v… #infosec

Dansk

230

15.2K

Sam Thomas retweetledi

lukas seidel@pr0me·28 Nis

fresh desk and a new chair. for a new start.

English

1.3K

Sam Thomas retweetledi

BINSEC Team @ Université Paris-Saclay, CEA, List@BinsecTool·27 Nis

🚨 Postdoc opening (24 months) in software security & fuzzing! Join our @BinsecTool team @CEA_List to work on smarter fuzzing for supply‑chain security. 📍 Paris‑Saclay 🇫🇷 🔗 Apply: binsec.github.io/jobs/open/2026… #Postdoc #Cybersecurity #Fuzzing #BinaryAnalysis #SupplyChainSecurity

BINSEC Team @ Université Paris-Saclay, CEA, List tweet media

English

691

Sam Thomas retweetledi

Michaël Marcozzi 🇪🇺🇧🇪@michaelmarcozzi·27 Nis

We are looking for a postdoc! ⬇️

BINSEC Team @ Université Paris-Saclay, CEA, List@BinsecTool

English

295

Sam Thomas retweetledi

uefitool@uefitool·16 Nis

UEFITool / UEFIExtract / UEFIFind NE A74 - a lot of bugfixes for issues found by @binarly_io folks - CSME version detection improvements - Insyde FlashDeviceMap improvements - other minor fixes github.com/LongSoft/UEFIT…

English

2.7K

Sam Thomas retweetledi

Robert Yates@yates82·16 Nis

I wrote a thing. if you are interested in obfuscation/de-obfuscation and compilers, but perhaps don't have a tangible experience with it, then i hope this story will be interesting to you and teach a few things along the way (-:

quarkslab@quarkslab

Obfuscation vs The Optimizer: A Battle in LLVM Middle End. @yates82 shows us how the continuous improvement of the LLVM optimizer defeats naive code obfuscation, and how the obfuscator can fight back. An eternal fight in which all victories are ephemeral blog.quarkslab.com/obfuscation-vs…

English

8.8K

Sam Thomas@xorpse·15 Nis

Writing Rust-based IDA plugins is as simple as implementing IDAPlugin and using an attribute macro to define metadata. The crate handles the rest!

English

1.1K

Sam Thomas@xorpse·15 Nis

We're pleased to announce a new release of our #Rust bindings for @HexRaysSA IDA Pro! This release adds compatibility with latest SDK, and introduces a Rust-native interface for developing plugins. github.com/idalib-rs/idal…

English

4.4K

Sam Thomas retweetledi

quarkslab@quarkslab·14 Nis

🤔Ever wondered how your favorite tools work under the hood? During our work on SightHouse, we dug into BSIM, Ghidra's Binary function SIMilarity engine. Many tools have been built around it, yet its internals remained undocumented. Until now 👇 blog.quarkslab.com/bsim-explained…

English

2.6K

Sam Thomas retweetledi

Abhi@AbhiTheModder·13 Nis

It’s finally here: radare2 + Warp (warrp) ⚡️ This makes r2 the first tool outside of the binary ninja ecosystem to adopt the format. Huge thanks to Mason (from @vector35) and @trufae (@radareorg) for their invaluable feedback's during development. github.com/radareorg/warrp

English

2.9K

Sam Thomas retweetledi

BINARLY🔬@binarly_io·13 Nis

What sets BRS apart is its flexibility and transparency. It is configured through product-, organization-, or ecosystem-specific risk profiles and is built to incorporate a wide range of existing metrics.

English

407

Sam Thomas retweetledi

BINARLY🔬@binarly_io·13 Nis

Relying on a single metric like CVSS or EPSS can miss critical product or organizational context. BRS brings consistency to comparing different risks, such as a known high-severity vulnerability with a PoC versus a potential zero-day.

English

419

Sam Thomas retweetledi

BINARLY🔬@binarly_io·13 Nis

Why create another metric? Traditional scoring systems are often rigid, opaque, and narrow in scope. They may not reflect product-specific requirements, differences across ecosystems such as firmware and cloud containers, or the realities of an evolving threat landscape.

English

357

Sam Thomas retweetledi

BINARLY🔬@binarly_io·13 Nis

BRS unifies diverse security signals into a single normalized risk score, making it easier to compare otherwise disparate finding types side by side. By combining existing models and metrics, it delivers a more consistent way to assess risk across environments.

English

320

Sam Thomas retweetledi

BINARLY🔬@binarly_io·13 Nis

Today, we’re introducing Binarly Risk Score (BRS), a new risk prioritization system designed to help security teams cut through scanner noise and focus on what matters most. binarly.io/blog/binarly-r…

English

1.7K

Sam Thomas retweetledi

Justin Elze@HackingLZ·13 Nis

Companies already can't prioritize vulnerabilities effectively. Flooding the pipeline with thousands of AI discovered bugs and framing them all as weaponized exploits doesn't help. x.com/gadievron/stat…

Gadi Evron@gadievron

An Expedited Strategy Briefing on Mythos, Glasswing, and building a security program for what comes next, by 250 CISOs, and the wider community. It is still a draft, with some design incomplete, but we felt it was imperative to release. Link: labs.cloudsecurityalliance.org/mythos-ciso/

English

101

9.2K

Sam Thomas retweetledi

Hussein Muhaisen@husseinmuhaisen·13 Nis

A good PagedOut! read on the IDM format used by the IDA project file. The CFP deadline for issue #9 is in < 3 weeks.

English

754

Sam Thomas retweetledi

Igor Gonebnyy@IGonebnyy·9 Nis

New chapter: I've joined @denodo as AI Alliances Director. AI's bottleneck isn't models — it's governed data access. Denodo solves it. Excited to build the partnerships that put Denodo at the center of the enterprise AI ecosystem. Focus: Foundation Models · Agentic AI · Data Fabric · Automation · Enterprise Apps Let's connect. 🚀

English

152

Sam Thomas retweetledi

Sanjay Rawat@tosanjayr·31 Mar

to find interesting non-trivial properties of the code with some guarantees from Datalog. Try it at: ♻️ github.com/tosanjay/Neuro… I did some eval and comparison with Joern to establish accuracy. It's not bad. I wanted to do more evaluations, but don't have budget for Claude :(

English

293

Keşfet

@binarly_io @BinsecTool @CEA_List @HexRaysSA @vector35 @trufae @radareorg @denodo