Our @recon slides and demo videos are now online as well:
https://silentsignal.hu/docs/S2-REcon24-Control_Flow_Integrity_on_IBM_i.pdf
🦀 The slides for my workshop at @recon in Montreal this year, "Reversing Rust Binaries: One Step Beyond Strings", are now online!
https://github.com/cxiao/rust-reversing-workshop-recon-2024/tree/main/slides
You can find both the slides and the diagrams I used for the workshop linked there. The slides are meant to be a resource for you to use while reversing, so they have lots of clickable links in them (:
In case you lose the link, you can also find the slides linked from my page on the REcon 2024 schedule: https://cfp.recon.cx/recon2024/talk/QCA37X/
Really great to meet so many cool people, and lots of work to do for Rust RE going forward! I left the conference with a lot of great ideas and directions for new research.
#REcon2024 #reconmtl #rustlang #reverseengineering #reversing #malwareanalysis
We're stoked we got to present about low-level #IBMi internals today at @recon! Here you can find our detailed writeup:
https://silentsignal.github.io/BelowMI/
We also released our @kaitai definition for the *PGM serialization format:
https://github.com/silentsignal/PGM-Kaitai
...and our #Ghidra extensions:
https://github.com/silentsignal/PowerAS
Stay tuned for slides and demos!
Hello @recon attendees! My workshop, Reversing Rust Binaries: One Step Beyond Strings will be delayed by one hour, and will run from 4:30 pm to 6:30 pm today in Soprano B.
🦀 Hello Rust reversers! If you're at @recon in Montreal this year, come check out my workshop, Reversing Rust Binaries: One Step Beyond Strings! It will be Friday June 28th, at 2:30 pm, in Soprano B.
https://cfp.recon.cx/recon2024/talk/QCA37X/
For pre-workshop setup instructions, including a prebuilt VM, prebuilt binaries, and sample code, see https://github.com/cxiao/rust-reversing-workshop-recon-2024
Hope to see many of you there!
#REcon2024 #reconmtl #rustlang #reverseengineering #reversing #malwareanalysis
Are you a seasoned reverse engineer, but you tremble when a Rust binary lands on your desk? When you encounter a Rust binary, do you just run `strings` on it and hope for the best? We will take a single problem - string recovery from a Rust binary - and uses it as an approachable starting point for exploring reversing Rust binaries. We will cover: What are the practical steps we need to take to recover strings? How are strings represented in memory, passed between functions, and manipulated throughout the program? Once we recover the strings, what do the strings mean? What can the strings we recover tell us about the compiler, language runtime, standard library, and third-party libraries in the binary? This workshop is intended for reverse engineers and malware analysts who are familiar with reversing C or C++ binaries, but who are unfamiliar with the Rust programming language. For pre-workshop setup instructions, including a prebuilt VM, prebuilt binaries, and sample code, see https://github.com/cxiao/rust-reversing-workshop-recon-2024
Slides from my REcon lightning talk about Rust in the Windows kernel are now up: https://github.com/cxiao/presentations/blob/main/A%20very%20quick%20look%20inside%20win32k_rs%20-%20REcon%202023%20Lightning%20Talk.pdf
Had a great time this week and talked to so many awesome people! Salut Montréal!
#reconmtl #REcon #rust #rustlang #windows #microsoft #reverseengineering
This #reconmtl talk by Ang Cui looks epic: Ice Ice Baby: Coppin' RAM With DIY Cryo-Mechanical Robot https://cfp.recon.cx/2023/talk/HCJHBW/
(coverage at https://www.theregister.com/2023/06/09/cold_boot_ram_theft/ by @thomasclaburn)
THS
Silent Signal
Cindʎ Xiao 🍉
Eva Infeld
HD Moore