🎙️ The next episode of Behind the Binary is here! In this episode we wrap up FLARE-On 12. We chat with several challenge authors (including the final challenge), discuss some creative cheating, and look at the impact of AI on the CtF 👇
https://t.co/girv5fPOtI
this is cool: Internet Detector changes the background of your malware analysis VM if you forget to re-enable "host only mode".
https://t.co/l2tZOOIDaY
FLARE-VM just got a serious upgrade — new GUI, automated builds, and 288+ tools (with better IDA + Go support).
The latest update brings:
🧰 Revamped installer
⚙️ New Python script for full VM automation
📚 (cont) https://t.co/XNghOyQj7p
⏲️ 1 week out!
Flare-On 12 kicks off next Friday, Sept. 26, at 8 PM EST. It's time to prove your #ReverseEngineering skills in this ultimate annual challenge. 🎮
Catch it live here 👉 https://t.co/3zLpiAuF27
Tick, tock! ⏰ The countdown is on—just 1 month until Flare-On 12 drops!
Test your #ReverseEngineering skills starting Sept 26 at 8PM EST. Don’t miss the annual challenge ➡️ https://t.co/YAvJprvI7D
The 12th Annual Flare-On Challenge kicks off Sept 26 at 8PM EST!
Reverse engineering pros, from Windows to Web3 (with a YARA twist), it's your time to shine. 🏆
Get ready → https://t.co/8O6q9qhgvl
#FlareOn12
Check out the new FLARE-powered podcast 🎧 "Behind the Binary, the podcast that introduces you to the fascinating people, technology, and tools driving the world of reverse engineering." Available on Spotify https://t.co/cO0nsbgIXF and other podcast platforms. Hosted by @jstrosch
The Flare-On Challenge is back for its 11th year! 🔥
This #CTF-style challenge for current and aspiring reverse engineers features puzzles across Windows, Linux, Web3, and even YARA.
Learn more and get ready to compete → https://t.co/qPOjkOSC2J
#Flareon11
Just decrypted the @elastic security EDR signature database [https://t.co/0Sw8Njo1DH]; including ML models, detection rules, encoded lua scripts, yara rules, exception-lists and block-lists.
Recently, I've decided to refactor my old projects, here is the first one, CallObfuscator [https://t.co/5aUW442xjS], it's an obfuscator used to hide (replace) the PE imports with other imports those are less suspicious (less chance to get flagged by analysts).
The new version features the following:
[+] Fully redesigned (more robust and clean code).
[+] Symbols are resolved by hashes instead of names.
[+] Support for symbols imported by ordinals.
[+] Stealthy shellcode execution.