#deobfuscation

Tedi Heriyantotedi@infosec.exchange
2025-12-31

Defeating AuraStealer: Practical Deobfuscation Workflows for Modern Infostealers: gendigital.com/blog/insights/r

#infostealer #analysis #deobfuscation

2025-08-18

🚨 Ever tangled with virtual machine-based code protection? 🚨

In 2020, I wrote a virtual machine deobfuscator for a crack me challenge. I've learned a lot doing that challenge and wrote a 2-part series for it:

malwareandstuff.com/taming-vir

malwareandstuff.com/taming-vir

πŸ” #ReverseEngineering #MalwareAnalysis #windows #idapro #deobfuscation

My new post about #malware #deobfuscation - cert.pl/en/posts/2025/04/peeph. I focus on the simple - but powerful - technique of local substitutions. Uses #ghidra and ghidralib.

2025-04-01

πŸ’£ Full write-up for "Tales for the Brave" - this year's Hard forensics challenge from Hack The Box Cyber Apocalypse CTF - Tales From Eldoria.

πŸ”Έ Code #deobfuscation
πŸ”Έ hashtag#Telegram data exfiltration
πŸ”Έ Malware behavioral analysis

πŸ”— blog.cyberethical.me/htb-ctf-2

#CyberEthical #CyberApocalypse25 #HackTheBox #forensics #EthicalHacking #blueteaming #itsec #dataexfiltration #malware

N-gated Hacker Newsngate
2025-03-06

🎩 Oh, look! Another tool to "deobfuscate" strings from garbled binaries, because obviously your life was incomplete without it. πŸ™„ Google Cloud wants you to believe it's revolutionary, but really, it's just another way to make you feel guilty for not understanding . πŸ˜‚
cloud.google.com/blog/topics/t

2024-12-26

Как ΠΏΡ€ΠΈΠ³ΠΎΡ‚ΠΎΠ²ΠΈΡ‚ΡŒ ΠΎΠ±Ρ„ΡƒΡΠΊΠ°Ρ†ΠΈΡŽ Π² JavaScript ΠΈ Π½Π΅ ΡΠΆΠ΅Ρ‡ΡŒ Π»Π°Π±Π°Ρ€Π°Ρ‚ΠΎΡ€ΠΈΡŽ: AST, babel, ΠΏΠ»Π°Π³ΠΈΠ½Ρ‹

ВСроятно ΠΊΠ°ΠΆΠ΄Ρ‹ΠΉ программист ΠΈΠ»ΠΈ компания, ΡΡ‚Π°Π»ΠΊΠΈΠ²Π°Π»ΠΈΡΡŒ с мыслями ΠΎ своСй крутости ΠΈΠ»ΠΈ хотя Π±Ρ‹ крутости своих Π°Π»Π³ΠΎΡ€ΠΈΡ‚ΠΌΠΎΠ² 😎. РазумССтся, Π² этом случаС ΠΌΠΎΠΆΠ΅Ρ‚ Π²ΠΎΠ·Π½ΠΈΠΊΠ½ΡƒΡ‚ΡŒ ΡΠΎΠΎΡ‚Π²Π΅Ρ‚ΡΡ‚Π²ΡƒΡŽΡ‰Π΅Π΅ Π½Π΅ΠΆΠ΅Π»Π°Π½ΠΈΠ΅ Π΄Π΅Π»ΠΈΡ‚ΡŒΡΡ Ρ€Π°Π·Ρ€Π°Π±ΠΎΡ‚ΠΊΠ°ΠΌΠΈ с ΡˆΠΈΡ€ΠΎΠΊΠΎΠΉ Π°ΡƒΠ΄ΠΈΡ‚ΠΎΡ€ΠΈΠ΅ΠΉ. Данная ΠΏΡ€ΠΎΠ±Π»Π΅ΠΌΠ° минимизируСтся пСрСносом части ΠΊΠΎΠ΄Π° Π½Π° сСрвСр (Ссли Ρ€Π΅Ρ‡ΡŒ ΠΈΠ΄Ρ‘Ρ‚ ΠΎ ΠΊΠ»ΠΈΠ΅Π½Ρ‚-сСрвСрных прилоТСниях). Однако, Ρ‚Π°ΠΊΠΎΠΉ ΠΏΠΎΠ΄Ρ…ΠΎΠ΄ Π½Π΅ всСгда ΠΏΡ€ΠΈΠΌΠ΅Π½ΠΈΠΌ, ΠΈ ΠΏΠΎΡ€ΠΎΠΉ ΠΎΠ±ΡΡ‚ΠΎΡΡ‚Π΅Π»ΡŒΡΡ‚Π²Π° Π²Ρ‹Π½ΡƒΠΆΠ΄Π°ΡŽΡ‚ нас ΠΎΡΡ‚Π°Π²Π»ΡΡ‚ΡŒ Ρ‡ΡƒΠ²ΡΡ‚Π²ΠΈΡ‚Π΅Π»ΡŒΠ½Ρ‹Π΅ участки ΠΊΠΎΠ΄Π° прямо Π½Π° Π²ΠΈΠ΄Ρƒ. Π’ этой ΡΡ‚Π°Ρ‚ΡŒΠ΅ ΠΌΡ‹ познакомимся, ΠΊΠ°ΠΊ ΠΌΠΈΠ½ΠΈΠΌΡƒΠΌ, с ΠΊΡ€ΡƒΡ‚Ρ‹ΠΌ словом, Π° ΠΏΠΎ возмоТности с Ρ‚Π°ΠΊΠΎΠΉ Ρ‚Π΅Ρ…Π½ΠΈΠΊΠΎΠΉ ΠΊΠ°ΠΊ обфускация Π² контСкстС языка JavaScript. Π Π΅Π°Π»ΠΈΠ·ΡƒΠ΅ΠΌ ΠΌΠ΅Ρ…Π°Π½ΠΈΠ·ΠΌΡ‹ для скрытия Π°Π»Π³ΠΎΡ€ΠΈΡ‚ΠΌΠΎΠ² ΠΈ услоТнСния ΠΎΠ±Ρ€Π°Ρ‚Π½ΠΎΠΉ Ρ€Π°Π·Ρ€Π°Π±ΠΎΡ‚ΠΊΠΈ ΠΊΠΎΠ΄Π°. ΠŸΠΎΠΏΡƒΡ‚Π½ΠΎ, ΠΌΡ‹ посмотрим Ρ‡Ρ‚ΠΎ Ρ‚Π°ΠΊΠΎΠ΅ AST, ΠΈ ΠΏΡ€ΠΈΠ²Π΅Π΄Ρ‘ΠΌ инструмСнты, с ΠΏΠΎΠΌΠΎΡ‰ΡŒΡŽ ΠΊΠΎΡ‚ΠΎΡ€Ρ‹Ρ… ΠΌΠΎΠΆΠ½ΠΎ Π²Π·Π°ΠΈΠΌΠΎΠ΄Π΅ΠΉΡΡ‚Π²ΠΎΠ²Π°Ρ‚ΡŒ с Π½ΠΈΠΌ для Ρ€Π΅Π°Π»ΠΈΠ·Π°Ρ†ΠΈΠΈ обфускации.

habr.com/ru/articles/870152/

#javascript #reverseengineering #obfuscation #ast #babel #deobfuscation

2024-12-03

Just wrapped up the JavaScript Deobfuscation module on HTB Academy, and it was an exciting deep dive into reverse engineering and tackling obfuscated code! 🧩

academy.hackthebox.com/achieve

#hackthebox #htbacademy #cybersecurity #bugbounty #deobfuscation #javascript

Tedi Heriyantotedi@infosec.exchange
2023-12-15
2023-07-25

πŸ˜Άβ€πŸŒ« Tired of obfuscated code slowing down your reverse engineering efforts? Let Arnau Gamez (@arnaugamez) from @furalabs teach you how to become a master (de)obfuscator, with his #infosec #training on Modern #Binary #Deobfuscation! Get your ticket now!

🎟️ ringzer0.training/trainings/an

An Analytical approach to Modern Binary Deobfuscation, Arnau Gamez I Montolio, Aug 05-08, The Palms, Las Vegas
2023-07-15

πŸ˜Άβ€πŸŒ« Tired of obfuscated code slowing down your reverse engineering efforts? Let Arnau Gamez (@arnaugamez) from @furalabs teach you how to become a master (de)obfuscator, with his #infosec #training on Modern #Binary #Deobfuscation! Get your ticket now!

🎟️ ringzer0.training/trainings/an

An Analytical Approach to Modern Binary Deobfuscation, Arnau Gamez I Montolio, Aug 05-08, The Palms, Las Vegas
2023-07-01

πŸ˜Άβ€πŸŒ« Tired of obfuscated code slowing down your reverse engineering efforts? Let Arnau Gamez teach you how to become a master (de)obfuscator, with his #infosec #training on Modern #Binary #Deobfuscation! Get your ticket now!

🎟️ ringzer0.training/trainings/an

An analytical approach to modern binary deobfuscation
2023-06-12

πŸ˜Άβ€πŸŒ« Tired of obfuscated code slowing down your reverse engineering efforts? Let Arnau Gamez teach you how to become a master (de)obfuscator, with his #infosec #training on Modern #Binary #Deobfuscation! Get your ticket now!

🎟️ ringzer0.training/trainings/an

An Analytical Approach to Modern Binary Deobfuxcation, Arnau Gamez i Montolio, Aug 05-08, The Palms, Las Vegas
2023-05-28

🌞 Happy Sunday! Here is some #SundayLearning inspiration for you - check out the workshop β€œHands-on #Binary #Deobfuscation - From Symbolic Execution to Program Synthesis”, by our instructor Arnau GΓ mez i Montolio (@arnaugamez) from @furalabs.

πŸŽ₯ vimeo.com/723157684

Did you like the workshop? Then check out Arnau's training "An Analytical Approach to Modern Binary Deobfuscation". Early bird tickets are still available!

🎟️ ringzer0.training/trainings/an

#SundayReading
2023-05-26

Looking into just trying to deobfuscate the older NAC stuff for generating the iMessage validation data...

Looks like it might be possible? As far as I can tell, it's just MBA + Control Flow Obfuscation.

I don't totally understand simplifying MBA, but it looks like it can be done with certain tools, and after that undoing the CFO should be easy-er?

#ReverseEngineering #MixedBooleanArithmetic #FairPlay #ControlFlowObfuscation #ControlFlow #deobfuscation #obfuscation #BinaryNinja #BinaryObfuscation

2023-05-25

πŸ˜Άβ€πŸŒ« Tired of obfuscated code slowing down your reverse engineering efforts? Let @arnaugamez from @furalabs teach you how to become a master (de)obfuscator, with his #infosec #training on Modern #Binary #Deobfuscation! Get your early bird ticket now!

🎟️ ringzer0.training/trainings/an

An Analytical Approach to Modern Binary Deobfuxcation, Arnau Gamez I Montolio, Aug 05-08,  The Palms, Las Vegas
2023-05-09

πŸ˜Άβ€πŸŒ« Tired of obfuscated code slowing down your reverse engineering efforts? Become a master (de)obfuscator by joining @arnaugamez 's #infosec #training on Modern #Binary #Deobfuscation!

🎟️ ringzer0.training/trainings/an

An Analytical Approach to Modern Binary Deobfuscation, Arnau Gamez, Aug 05-08, The Palms, Las Vegas

Client Info

Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst