Olivia
Online
allthingsida
@allthingsida
All things IDA, security, reverse engineering, programming, AI and more. Friend and fan of Hex-Rays but non-official.
USA
Joined March 2023
392 Following
4.7K Followers
495 Posts
@kernullist has been doing great releases recently. Keep up the good work!
Released PseudoForge 0.1.0.
An IDA Pro / Hex-Rays plugin built for Windows kernel driver analysis.
It cleans up raw decompiler output with rule-based passes, WDK-backed API profiles, user-defined rules, and optional LLM rename assist that is kept behind deterministic validation.
Current focus:
- DriverEntry reconstruction hints
- IRP / IOCTL dispatcher cleanup
- CTL_CODE and NTSTATUS decoding
- WDK API argument semantics
- pool tag recovery
- LIST_ENTRY traversal
- CONTAINING_RECORD patterns
- callback registration flows
- common kernel cleanup paths
This is still a very early release, so expect rough edges. 😆
repo: https://t.co/BZJfKNfcGX
Spent the last 2 weeks working on a devirtualizer for VMProtect 3.5 and learning Remill. Idk yet if I will blog about it, but I at least wanted to publish the code:
https://t.co/GLqKWpOOU7
The approach is different from my last blog, as it lifts the whole x86 code of the VM
I made a video for the first 30 years. Catch up if you want.
https://t.co/UXIgQj8xUR
🎂 IDA Turns 35.
From DOS-era disassembler to one of the most widely used reverse engineering platforms in the world...
To celebrate, we’re launching:
• 35% off new licenses (see eligibility requirements)
• Limited-edition swag giveaway
• “35 Ways to Use IDA” as told by you
• Stories from the past and a few for the future
Read all about it here:
https://t.co/cyC3gUXK1x
Rust reverse engineering is about to get a lot easier. 🦀
I'm thrilled to announce that Oxidizer, the first Rust decompiler, has been officially merged into angr!
Try it out: https://t.co/D9ILIgVH1K
You can also find the paper here: https://t.co/k97qZRvEAm
Who to follow
Duncan Ogilvie 🍍
@mrexodia
Reverse engineer and creator of @x64dbg
Reverse Engineering and More
@re_and_more
RE and More by Alexey Kleymenov (https://t.co/s1pWjL46AW). Private classes and group workshops in malware analysis and reverse engineering. #infosec #malware
reverseame
@reverseame
RME-DisCo research group from University of Zaragoza. Special interest on software and systems security. Link to our Telegram channel: https://t.co/UmkcXVG8MU
@gerhart_x @Microsoft Indeed. With tools like IDASQL or GhidraSQL you can recover the source code better than the original ;)
@matrosov @halvarflake @brucedang @dyn___ That’s the hope to make it more efficient than code snippets or a new set of functions (MCP approach). LLMs know SQL very well on top of that. I have a lot to improve in the (ida|binja|ghidra)sql space and unify them. I am working on it.
@matrosov @halvarflake @brucedang @dyn___ Indeed. You can just fully RE with a Ralph loop or equivalent and with the proper connectors. All automated.
Binaries are the new source code ;)
@yates82 Then having to fix your clock to compensate for the time you spent in Ctrl-D.
Don’t forget to get the patch to enable ring0 mp3 player too ;)
Good old days.
Thanks @Steph3nSims for hosting. I enjoyed showing the capabilities of libghidra and ghidrasql to create AI based reverse engineering workflows.
While the “sql” wording can be confusing, ghidrasql can equally do everything, if not more than your favorite MCP you already use.
Automated Reverse Engineering with LibGhidra, GhidraSQL, and AI Agents https://t.co/OnCpJwznzI
New training updates, plus Spring discounts:
• On-demand Starter → 20% off with code STR20
• AI-powered Intermediate → 40% off (May 12) with code AI-INTER40
• Malware, Decompiler & Programming → 30% off with code SPRING30
Details + course breakdown: https://t.co/S2kbRfxGcJ
*Limited time offer, check blog for expiration dates!
REcon is right around the corner. Early-bird training pricing has been extended, and conference tickets remain at March rates until May 11.
Conference: June 19 to 21 2026
Training: June 15 to 18 2026
Location: Montreal, Canada
Heads up: hotel booking cutoff is next week too.
If you live in IDA, Ghidra, or a debugger, this is your conference. https://t.co/HCSvjRS3aR #REcon #RE #reverseengineering #InfoSec
Made a little experiment of lifting IDA microcode to z3 to automatically resolve opaque predicates. It works quite well on a few malware families I tested on.
In the gif you can see Lumma stealer's opaque predicates being solved automatically:
https://t.co/Okf8njohl8
Ok, ida-frustrated 0.0.2 has now some cool animations and scenes. Press Ctrl-Alt-T in any widget to get a random visual. It really would uplift the frustration! ;)
Put together a "frustrated" mode for IDA ;p
(Still working out the animation quirks)
@takaiAr Ctrl-B too, etc. ;)
libghidra was needed for the ghidrasql project which will complement idasql and bnsql.
You can grab the 0.0.1 (alpha) release from here: https://t.co/rzM5KAXcJb. 9/9
I've been building libghidra: a typed SDK for automating Ghidra from C++, Python, and Rust (mainly for AI agents). Decompile, rename, comment, inspect symbols/types/xrefs, save, close, and reopen projects from code. Treat Ghidra like infrastructure, not just a GUI.
Under the hood this is a typed API surface over a Ghidra host/extension. The same core workflows exist across C++, Python, and Rust, so you can use it for quick scripts, larger pipelines, or native tooling. 1/n
libghidra can run Ghidra’s native decompiler engine from a normal C++ executable: no Java process, no UI, no HTTP server. The build embeds the processor specs, and the app can open a binary, list functions, decompile, rename, type, and inspect data offline. 8/n
Have fun, show me your craziest animations! ;p
https://t.co/Okf8njohl8
Put together a "frustrated" mode for IDA ;p
(Still working out the animation quirks)
Put together a "frustrated" mode for IDA ;p
(Still working out the animation quirks)
I did not know Ghidra does that. Sorry, if this is silly, I stumbled upon it by accident.
Last Seen Users on Sotwe
fglie
Seen from Indonesia
광대녀 집합소
Seen from Germany
tolgasalihlili
Seen from Turkey
حصريات خليجيه حديثه
Seen from Germany
Albert legless
Seen from Australia
pijat panggilan
Seen from United States
طبلوش
Seen from Algeria
İstanbul / balıkesir
Seen from Germany
مدرسة سُمية ( ١٠- ١٢ )
الأستاذ
Seen from Egypt
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.7M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers