Sam Thomas

682 posts

Sam Thomas

@xorpse

Chief Scientist @binarly_io. Program analysis. Reverse engineering. Backdoor detection.

United Kingdom Katılım Aralık 2017

626 Takip Edilen657 Takipçiler

Sam Thomas retweetledi

Invoke RE@InvokeReversing·12 Mar

We've uploaded our live stream from RE//verse 2026 where we sat down with @emesarecom from @vector35 to discuss WARP signatures used for symbol and type information recovery. Mason is a wealth of knowledge and it was a pleasure speaking with him at this amazing event!

English

Sam Thomas retweetledi

lukas seidel@pr0me·12 Mar

@0x464D standalone should be up in a couple days, and we are also looking into a version for VulHunt :)

English

234

Sam Thomas@xorpse·12 Mar

@qkaiser Thank you, it means a lot!

English

Sam Thomas retweetledi

Quentin Kaiser@qkaiser·12 Mar

Spent the evening digging through the code. The engineering behind this is 🤌 deeply complex, yet full of elegant, high-leverage tricks to keep it fast. If you work on similar problems, there’s a lot here to learn from.

Sam Thomas@xorpse

We @binarly_io just open-sourced our VulHunt framework at @REverseConf! GitHub: github.com/vulhunt-re/vul… Documentation: vulhunt.re/docs Slack: join.slack.com/t/vulhunt/shar… vulhunt.re

English

3.4K

Sam Thomas retweetledi

Rodrigo Branco@bsdaemon·11 Mar

This is actually great work. We have repeoduced the early effort from the blog post and had quite good results.

lukas seidel@pr0me

we will present our work on practical binary type recovery at ACM CODASPY '26! prior work rarely focused on applicability: too slow, no meaningful filtering mechanisms, unsound struct recovery we address these gaps and present a system for headless type recovery at scale

English

2.2K

Sam Thomas retweetledi

lukas seidel@pr0me·11 Mar

recovering type layouts is one of the primary tasks during reverse engineering. especially recovering structs and their fields can drastically improve the readability of decompiled code. type recovery systems aim to automate this step, e.g., by using machine learning techniques

English

844

Sam Thomas retweetledi

lukas seidel@pr0me·11 Mar

our improved implementation of an n-gram-based approach enables automatic filtering and is orders of magnitudes faster than comparable systems. we also show that the system is on-par with the SotA in recovering struct types.

English

639

Sam Thomas retweetledi

lukas seidel@pr0me·11 Mar

furthermore, we show that the approach also works reasonably well to recover full function signatures!

English

797

Sam Thomas retweetledi

lukas seidel@pr0me·11 Mar

the full preprint is available here: arxiv.org/pdf/2603.08225 source code will be made available soon! also thank you to my co-authors @xorpse @binarly_io @mlsec @bifoldberlin

English

2.9K

Sam Thomas retweetledi

lukas seidel@pr0me·11 Mar

English

22.6K

Sam Thomas retweetledi

BINARLY🔬@binarly_io·11 Mar

Slides and demos for our @REverseConf talk by @francesco_ev and @xorpse are up! If you missed the conference, now's you're opportunity to take a look at the talk content and demos. Slides & demos: github.com/binarly-io/Res… VulHunt framework: vulhunt.re

English

4.1K

Sam Thomas retweetledi

lukas seidel@pr0me·10 Mar

VULHUNT IS OPEN SOURCE you can now use our binary analysis and querying engine for your own research or let an agent go ham with the MCP. the team also did an amazing job to ship comprehensive docs and blog posts with the details, check them out!

Sam Thomas@xorpse

We @binarly_io just open-sourced our VulHunt framework at @REverseConf! GitHub: github.com/vulhunt-re/vul… Documentation: vulhunt.re/docs Slack: join.slack.com/t/vulhunt/shar… vulhunt.re

English

114

9.5K

Sam Thomas retweetledi

Fabio Pagani@pagabuc·10 Mar

Favorite talks: 1. fail: jmp fail (everything I got wrong in RE and security research) by Chris Domas 2. Breaking Encrypted USB Drives with Time-Travel Debugging by Xusheng Li 3. VulHunt: A Framework for Hunting Vulnerabilities in Binaries by @francesco_ev and @xorpse

English

809

Sam Thomas retweetledi

Antonio 's4tan' Parata@s4tan·9 Mar

Vibe-coded a shellcode-to-EXE tool in Rust. Useful if you need to analyze shellcode :) github.com/enkomio/shrun

English

1.2K

Sam Thomas retweetledi

Michaël Marcozzi 🇪🇺🇧🇪@michaelmarcozzi·9 Mar

Finding backdoors in software is like hunting for a needle that’s actively trying to hide. 🪡🕵️ Check out our @fosdem talk with @plumtrie on using fuzzing to automate the search! 📺 Watch: mirrors.dotsrc.org/fosdem/2026/ub… 📜 ICSE Paper: binsec.github.io/assets/publica…

English

528

Sam Thomas retweetledi

0xor0ne@0xor0ne·8 Mar

VulHunt: vulnerability detection framework by @binarly_io github.com/vulhunt-re/vul… Accompanying blog series: binarly.io/blog/vulhunt-i… binarly.io/blog/vulhunt-i… binarly.io/blog/vulnerabi… binarly.io/blog/vulhunt-i… binarly.io/blog/agentic-v… #infosec

English

253

13.8K

Sam Thomas retweetledi

Rodrigo Branco@bsdaemon·8 Mar

Folks asked during the talk and, boom!

BINARLY🔬@binarly_io

As part of our vulhunt.re release, we've also dropped few rules! First up is a rule to detect a #LogoFAIL variant (CVE-2023-40238) in a UEFI DXE driver for BMP decoding... Test case(s): github.com/vulhunt-re/tes… Rule: github.com/vulhunt-re/rul…

English

Sam Thomas retweetledi

GitHub Projects Community@GithubProjects·4 Mar

The definitive open-source tui hex editor for forensic file inspection

English

9.3K

Sam Thomas retweetledi

Alex Matrosov@matrosov·8 Mar

The dream of a fast and reliable binary analysis framework is now a reality. Today, we’re open sourcing VulHunt.RE 🎉 code: github.com/vulhunt-re/vul… docs: vulhunt.re/docs A huge kudos to the entire REsearch team!

Alex Matrosov@matrosov

This year at @REverseConf, we’re dropping something special, a project we’ve been heads-down on for a while that boosts semantic-level binary detection with reachability + taint analysis. Like CodeQL/Semgrep, but for binaries. VulHunt use cases: Vuln REsearch: binarly.io/blog/vulnerabi… Detection Eng: binarly.io/blog/vulhunt-i… VH Intro: binarly.io/blog/vulhunt-i…

English

382

34.6K

Sam Thomas retweetledi

BINARLY🔬@binarly_io·8 Mar

Each of these examples are documented step-by-step in our user guide: vulhunt.re/docs/user-guid…

BINARLY🔬@binarly_io

English

1.6K

Keşfet

@emesarecom @vector35 @0x464D @qkaiser @binarly_io @mlsec @bifoldberlin @REverseConf