#binaryninja — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #binaryninja, aggregated by home.social.
-
RE: https://infosec.exchange/@binaryninja/116403309269355624
For the few people using #BinYars, it has been updated to support #BinaryNinja 5.3 and now targets YARA-X 1.15.0
Update via Binja's plugin manager to get the latest.
-
RE: https://infosec.exchange/@binaryninja/116403309269355624
For the few people using #BinYars, it has been updated to support #BinaryNinja 5.3 and now targets YARA-X 1.15.0
Update via Binja's plugin manager to get the latest.
-
RE: https://infosec.exchange/@binaryninja/116403309269355624
For the few people using #BinYars, it has been updated to support #BinaryNinja 5.3 and now targets YARA-X 1.15.0
Update via Binja's plugin manager to get the latest.
-
RE: https://infosec.exchange/@binaryninja/116403309269355624
For the few people using #BinYars, it has been updated to support #BinaryNinja 5.3 and now targets YARA-X 1.15.0
Update via Binja's plugin manager to get the latest.
-
RE: https://infosec.exchange/@binaryninja/116403309269355624
For the few people using #BinYars, it has been updated to support #BinaryNinja 5.3 and now targets YARA-X 1.15.0
Update via Binja's plugin manager to get the latest.
-
#binjaextras has been updated to allow for type information to be applied to both struct members and global variables.
Local instance of OALab's hashdb has been added as well. See the readme for setup information.
https://github.com/xorhex/binjaextras/blob/main/README.md
Update/install via Binja's plugin manager to get the latest features.
-
[RSS] Container Transforms: Working with Nested Binary Formats
https://binary.ninja/2026/03/31/container-transforms.html
#BinaryNinja -
[RSS] Building a Custom Architecture and Platform: Part 3
https://binary.ninja/2026/03/04/quark-platform-part-3.html
#BinaryNinja -
Recently my RE workflow moved into sandboxed VMs where agents have full control over the environment. I needed an MCP server that runs headless in the same sandbox and exposes way more of the #BinaryNinja API than others.
Here's the release: https://github.com/mrphrazer/binary-ninja-headless-mcp
-
After some unexpectedly painful test&debug sessions I'm publishing my #REshare exporter for #BinaryNinja:
https://github.com/v-p-b/reshare-ninja
Since Binary Ninja supports importing Ghidra projects, technically there is now a conversion path between three major #ReverseEngineering frameworks, but of course I plan to create a REshare importer as well.
Note that there are certainly a *lot* of edge-cases that are not properly handled yet - issues and PRs are welcome as always! -
[RSS] Building a Custom Architecture and Platform: Part 2
https://binary.ninja/2026/02/26/quark-platform-part-2.html
#BinaryNinja -
[RSS] Building a Custom Architecture and Platform: Part 1
https://binary.ninja/2026/02/20/quark-platform-part-1.html
#BinaryNinja -
The game is afoot!
#ReverseEngineering
#BinaryNinja -
-
I'm not a Ghidra user but I do think it's awesome that Binary Ninja supports exporting to Ghidra.
-
Changed just 2 things in Binary Ninja's HLIL representation to get the Mersenne Twister initialize_state formula to match what's on Wikipedia:
seed = f * (seed ^ (seed >> (w-2))) + i;
w: word size (in number of bits). 32-2 = 30
f: is the constant 0x6c078965Can you spot the 2 things? 🙂
-
#REshare exporter for #BinaryNinja is getting into shape! A sane API and good documentation made a world of difference, but of course I found a bit in the type system that required some hacks :)
https://github.com/v-p-b/reshare
Code coming next week after some more testing.
#ReverseEngineering -
TIL - using BinaryNinja's API, one can automatically saved extracted and transformed bytes back into the current project
```
current_project.create_file(decoded_bytes, name="extracted.bin", folder=None, description="Extracted from: <insert hash of current file>")
``` -
I published an #IDA importer for the REShare #ReverseEngineering exchange format:
https://github.com/v-p-b/reshare-ida
I also wrote up my development experiences, incl. tips for IDA's type info API:
REshare Ramblings - Bad Vibes with IDA
https://scrapco.de/blog/reshare-ramblings-bad-vibes-with-ida.html
I'm still looking for contributors, esp. on the #radare2 and #BinaryNinja side! -
#BinYars (write #YARA-X rules inside of #BinaryNinja) is now available in Binja's plugin manager!
I want to give a special shout out to @cxiao (Thank You 🙏) who provided valuable feedback making the plugin experience better.
Happy rule writing!
Learn more @ https://github.com/xorhex/BinYars
-
I might need to find some bug bounty matching up with the price of that fw including ("Ultimate") version of #BinaryNinja.
It does look quite enticing.
-
Happy to share that later today (Friday, Nov 14, at 10:00 PM CET / 16:00 ET), I’ll be live on the #BinaryNinja livestream to talk about (anti-)reverse engineering & code (de)obfuscation. I'll also showcase some of my plugins.
-
Still testing 🤞
For those able to use #BinaryNinja projects; #BinYars can sort the files into folders based upon the #Yara-X rule metadata field, BNFolder. The folder nesting structure is determined by the number of matches that reside under each folder - check out the video below!
-
As a result of working on r4ghidra I set the ambitious goal to create REshare, an exchange format for #ReverseEngineering tools:
https://github.com/v-p-b/reshare/
The code is still in its early days (literally) but the fact that it works with complex, real life binaries tells me that this goal is worth pursuing.
I'm looking for contributors, esp. for #BinaryNinja, #IDA and #radare2 scripting so we can bring all these worlds together! -
It's getting close to being done - #BinYars a #YARA-X #BinaryNinja plugin! Still testing, but plan on open sourcing it for all to use.
Shout out to Remco Sprooten for making this tool (also shown in the video) for quickly drafting Yara rules 💪 https://github.com/1337-42/SimpleYaraBN
Video: Part 1 of 2
-
The recording of our @Defcon talk is now available. We shared our approach to reversing IoT and OT malware written in Go using a hybrid toolkit that blends AI with traditional analysis methods using #Radare2 , #Ghidra, and #BinaryNinja. Thanks to everyone who came out and stayed engaged through the technical hiccups that the venue had. We had to improvise and share a link for the slides on the spot.
-
The recording of our (CC @nicolodev talk "Breaking Mixed Boolean-Arithmetic Obfuscation in Real-World Applications" at @recon is now online!
Recording: https://www.youtube.com/watch?v=QxSGWk3MqaQ
Slides: https://synthesis.to/presentations/recon25_mba_obfuscation.pdf
#BinaryNinja Plugin: https://github.com/mrphrazer/obfuscation_analysis
-
The new version of my #BinaryNinja plugin Obfuscation Analysis (v1.2) adds recursive function inlining in the decompiler.
It collapses call-heavy code into a single function; analysis, constant propagation, DCE and other analyses work across boundaries.
-
Why is it so hard to get software over the last mile stone to make it usable for more than just me? I've a new #BinaryNinja ( #yarax ) plugin sitting in the wings needing to be polished for release and another release of #BinjaExtras with additional features close, but not close enough for release.
-
I’m forcing myself to learn #BinaryNinja, and using an LLM to search through the user manual and learn the basics is a game changer. Questions about fonts, theming, basic shortcuts, and considerations coming from IDA all answered easily. Makes me wish I had access to their Sidekick API. I bet it’s even smoother.
-
@gloriouscow The more I look into it the less hair I’ll retain at the end...
Loaded #BinaryNinja out of curiosity (should’ve done that earlier, it loads 8086 in free version!) and it shows me that only far call here is done to call DATA SECTION?!
Maybe it has it’s own hard time decoding this mess - after all, even with enabled stripping, the code is 22K just to print your own filename - but it doesn’t really match the disassembly from MartyPC and I’m running out of ideas here…
-
Exciting! @vector35 's excellent #BinaryNinja ships with built-in BinExport in the latest dev version!
Here's how to use it with #BinDiff: https://dev-docs.binary.ninja/guide/binexport.html -
A 🦄 is coming soon to #BinjaExtras
-
Released Binja Apple Blocks Plugin 0.4.0, adding support for generic helper info on block descriptors.
-
Released Binja Apple Blocks Plugin 0.4.0, adding support for generic helper info on block descriptors.
-
Released Binja Apple Blocks Plugin 0.4.0, adding support for generic helper info on block descriptors.
-
Released Binja Apple Blocks Plugin 0.4.0, adding support for generic helper info on block descriptors.
-
Released Binja Apple Blocks Plugin 0.4.0, adding support for generic helper info on block descriptors.
-
Time to finish the #Ghidra binary similarity processing system! We have unpacked 200GB of malware, now it's time to build a #BSim database from the VX-Underground samples! We'll process everything with #BinaryNinja too!
-
Time to finish the #Ghidra binary similarity processing system! We have unpacked 200GB of malware, now it's time to build a #BSim database from the VX-Underground samples! We'll process everything with #BinaryNinja too!
-
Time to finish the #Ghidra binary similarity processing system! We have unpacked 200GB of malware, now it's time to build a #BSim database from the VX-Underground samples! We'll process everything with #BinaryNinja too!
-
Time to finish the #Ghidra binary similarity processing system! We have unpacked 200GB of malware, now it's time to build a #BSim database from the VX-Underground samples! We'll process everything with #BinaryNinja too!
-
Time to finish the #Ghidra binary similarity processing system! We have unpacked 200GB of malware, now it's time to build a #BSim database from the VX-Underground samples! We'll process everything with #BinaryNinja too!
-
If you are interested the links to ReVa and the challenge are below! 💜✨
https://github.com/cyberkaida/reverse-engineering-assistant
https://github.com/ctfs/write-ups-2016/blob/master/su-ctf-2016/reverse/dmd-50/dMd
-
It is really interesting how the prompt changes the outcome. I am working to reduce the effect, but in this case without `be **VERY** careful` it would sometimes miss the first digit of the MD5 hash. I think because the first digit is separate from the rest in #BinaryNinja decompilation.
I think adding the `be **VERY** careful` to the system prompt might make it more consistent...
-
✨Live now at https://twitch.tv/cyberkaida ✨Today we are improving our reverse engineering AI assistant, adding multi stage reasoning and more context! Already it can search an RE project and include multiple program components into its answers. It also works well locally on device and with a self hosted inference server! 👩💻🥳
Now we need to give it a higher level overview to improve the question decomposition! 🔮
If it goes well today we will also start the Binary Ninja integration! 🥷
-
Really loving the @binaryninja plugin highlights. So many cool tools and plugins to try!
-
Really loving the @binaryninja plugin highlights. So many cool tools and plugins to try!
-
Looking into just trying to deobfuscate the older NAC stuff for generating the iMessage validation data...
Looks like it might be possible? As far as I can tell, it's just MBA + Control Flow Obfuscation.
I don't totally understand simplifying MBA, but it looks like it can be done with certain tools, and after that undoing the CFO should be easy-er?
#ReverseEngineering #MixedBooleanArithmetic #FairPlay #ControlFlowObfuscation #ControlFlow #deobfuscation #obfuscation #BinaryNinja #BinaryObfuscation
-
Looking into just trying to deobfuscate the older NAC stuff for generating the iMessage validation data...
Looks like it might be possible? As far as I can tell, it's just MBA + Control Flow Obfuscation.
I don't totally understand simplifying MBA, but it looks like it can be done with certain tools, and after that undoing the CFO should be easy-er?
#ReverseEngineering #MixedBooleanArithmetic #FairPlay #ControlFlowObfuscation #ControlFlow #deobfuscation #obfuscation #BinaryNinja #BinaryObfuscation