Danny Quist
@dannyquist.bsky.social
Reverse engineer. Malware enthusiast.
Bob came in at about 20%, he’s now at 93%
April 26, 2025 at 3:22 PM
Bob came in at about 20%, he’s now at 93%
"Every generation re-invents the hash table" something @troutgirl.bsky.social said, two hash-table-inventions ago www.wired.com/story/underg...
Undergraduate Disproves 40-Year-Old Conjecture, Invents New Kind of Hash Table
A young computer scientist and two colleagues show that searches within data structures called hash tables can be much faster than previously deemed possible.
www.wired.com
March 17, 2025 at 7:42 PM
"Every generation re-invents the hash table" something @troutgirl.bsky.social said, two hash-table-inventions ago www.wired.com/story/underg...
Ungarble: Deobfuscation of Go's garbled binaries. Nice work @invokereversing.bsky.social invokere.com/posts/2025/0...
Ungarble: Deobfuscating Golang with Binary Ninja
In this blog post we explore using Binary Ninja and emulation to address obfuscation implemented by an open source obfuscator named Garble that is used by red team operators and malware authors to inh...
invokere.com
March 12, 2025 at 12:00 AM
Ungarble: Deobfuscation of Go's garbled binaries. Nice work @invokereversing.bsky.social invokere.com/posts/2025/0...
OpenRakis/Spice86 name checks out ✅ x86 emulation framework ✅ 16-bit only?!?!! It's another game hacking platform github.com/OpenRakis/Sp...
GitHub - OpenRakis/Spice86: Reverse engineer and rewrite real mode DOS programs!
Reverse engineer and rewrite real mode DOS programs! - GitHub - OpenRakis/Spice86: Reverse engineer and rewrite real mode DOS programs!
github.com
February 20, 2025 at 5:12 PM
OpenRakis/Spice86 name checks out ✅ x86 emulation framework ✅ 16-bit only?!?!! It's another game hacking platform github.com/OpenRakis/Sp...
Reposted by Danny Quist
CactusCon 13 is here in Mesa, Arizona. See you all there.
Hi Everyone!
Excited to announce that once again, I'll be speaking at @cactuscon.com - This time on how to manage large(and small) scale Incident Response Engagements with some of the tricky situations that can present themselves!
The Schedule! - www.cactuscon.com/cc13-schedule
Excited to announce that once again, I'll be speaking at @cactuscon.com - This time on how to manage large(and small) scale Incident Response Engagements with some of the tricky situations that can present themselves!
The Schedule! - www.cactuscon.com/cc13-schedule
CC13 Talks & Schedule — CactusCon
www.cactuscon.com
January 27, 2025 at 5:24 PM
CactusCon 13 is here in Mesa, Arizona. See you all there.
Two industries that are pretty much the same: Video game copyright protection software and malware ssno.cc/posts/revers...
Reverse Engineering Call Of Duty Anti-Cheat
I’ve been reversing Black Ops Cold War for a while now, and I’ve finally decided to share my research regarding the user-mode anti-cheat inside the game. It’s not my intention to shame or promote chea...
ssno.cc
January 22, 2025 at 3:32 PM
Two industries that are pretty much the same: Video game copyright protection software and malware ssno.cc/posts/revers...
Reposted by Danny Quist
He penetrated the top ranks of prominent right-wing militias & devised elaborate ruses to gather evidence of ties to high-ranking law enforcement officials.
He was so successful, he became a militia’s top commander in Utah.
The latest must-read from @josh-kaplan.bsky.social @propublica.org
He was so successful, he became a militia’s top commander in Utah.
The latest must-read from @josh-kaplan.bsky.social @propublica.org
A Mole Infiltrated the Highest Ranks of American Militias. This Is What He Found.
Outraged by the Jan. 6 Capitol riot, a wilderness survival trainer spent years undercover climbing the ranks of right-wing militias. He didn’t tell police or the FBI. He didn’t tell family or friends....
www.propublica.org
January 4, 2025 at 11:02 AM
He penetrated the top ranks of prominent right-wing militias & devised elaborate ruses to gather evidence of ties to high-ranking law enforcement officials.
He was so successful, he became a militia’s top commander in Utah.
The latest must-read from @josh-kaplan.bsky.social @propublica.org
He was so successful, he became a militia’s top commander in Utah.
The latest must-read from @josh-kaplan.bsky.social @propublica.org
Reposted by Danny Quist
The poster is at github.com/corkami/pics/
January 4, 2025 at 9:02 PM
The poster is at github.com/corkami/pics/
Fearsome File Formats by @angealbertini.bsky.social This is 99% about file formats, and 1% how to present file formats to an audience speakerdeck.com/ange/fearsom...
Fearsome File Formats
Presented at 38C3 in Hamburg on the 28th December 2024.
Video recording: https://media.ccc.de/v/38c3-fearsome-file-formats
With so many open-sou…
speakerdeck.com
December 30, 2024 at 4:45 PM
Fearsome File Formats by @angealbertini.bsky.social This is 99% about file formats, and 1% how to present file formats to an audience speakerdeck.com/ange/fearsom...
In your forward engineering career if you ever have the chance to design a new file format, please listen to the advice from Ange Albertini's 2024 38C3 talk
December 30, 2024 at 4:30 PM
In your forward engineering career if you ever have the chance to design a new file format, please listen to the advice from Ange Albertini's 2024 38C3 talk
Reposted by Danny Quist
Oh! @raspberrypi.com RP2350 gotcha detailed at CCC. Does he win the prize?? events.ccc.de/congress/202...
38c3: Hacking the RP2350
The RP2350 security architecture involves several interconnected mechanisms which together provide authentication of code running on the chip, protected one-time-programmable storage, fine-grained con...
events.ccc.de
December 28, 2024 at 6:08 PM
Oh! @raspberrypi.com RP2350 gotcha detailed at CCC. Does he win the prize?? events.ccc.de/congress/202...
The real enemy is token ring. Truer words have never been said Taylor youtu.be/f8PP5IHsL8Y
TWISTED: The dramatic history of twisted-pair Ethernet
YouTube video by The Serial Port
youtu.be
December 28, 2024 at 3:52 AM
The real enemy is token ring. Truer words have never been said Taylor youtu.be/f8PP5IHsL8Y
Cognitive load is what we fight with in reverse engineering too. Obfuscation is cognitive load
Reverse engineers try to find patterns to reduce load
Forward engineers try to reduce complexity
minds.md/zakirullin/c...
Reverse engineers try to find patterns to reduce load
Forward engineers try to reduce complexity
minds.md/zakirullin/c...
Cognitive load is what matters
There are so many buzzwords and best practices out there, but let's focus on something more fundamental. What matters is the amount of confusion developers feel when going through the code.
minds.md
December 26, 2024 at 5:52 PM
Cognitive load is what we fight with in reverse engineering too. Obfuscation is cognitive load
Reverse engineers try to find patterns to reduce load
Forward engineers try to reduce complexity
minds.md/zakirullin/c...
Reverse engineers try to find patterns to reduce load
Forward engineers try to reduce complexity
minds.md/zakirullin/c...
ISO-8583, you old boot. Credit card protocols, how do they work? I love articles that are basically a side-lesson in how to effectively visually communicate a boring protocol increase.com/articles/iso...
ISO 8583: The language of credit cards — Increase
Discover the inner workings of ISO 8583, the global standard for credit card transaction messaging. Learn how it powers payment processing across networks and explore its structure, fields, and real-w...
increase.com
December 19, 2024 at 4:30 PM
ISO-8583, you old boot. Credit card protocols, how do they work? I love articles that are basically a side-lesson in how to effectively visually communicate a boring protocol increase.com/articles/iso...
Reposted by Danny Quist
Evading EDR by @matterpreter.bsky.social is one of the best books ever published by NoStarch. If you enjoyed the original Rootkits book check this out nostarch.com/evading-edr
Evading EDR
A guide to understanding the attack-detection software running on Microsoft systems, and how to evade it.
nostarch.com
December 17, 2024 at 4:22 PM
Evading EDR by @matterpreter.bsky.social is one of the best books ever published by NoStarch. If you enjoyed the original Rootkits book check this out nostarch.com/evading-edr
Excellence in radio
www.camras.nl/en/blog/2024...
www.camras.nl/en/blog/2024...
Dwingeloo telescope receives signals from Voyager 1 – Dwingeloo Radio Telescope | CAMRAS
www.camras.nl
December 12, 2024 at 12:18 AM
Excellence in radio
www.camras.nl/en/blog/2024...
www.camras.nl/en/blog/2024...
Sean is damn right: C++ structs are tricky. Decompilers universally work better once you fill out structs and types.
Reversing C++ structures can be tricky. Binary Ninja makes it easier. I wrote up a walkthrough to clean up those pesky vtables. @binary.ninja
www.seandeaton.com/gotta-re-em-...
#binaryninja #reverseengineering #ghidra #ida
www.seandeaton.com/gotta-re-em-...
#binaryninja #reverseengineering #ghidra #ida
Gotta RE 'em All: Reversing C++ Virtual Function Tables with Binary Ninja
C++ can be frustrating to reverse engineer. Explore how to reverse engineer those with Binary Ninja.
www.seandeaton.com
December 2, 2024 at 9:58 PM
Sean is damn right: C++ structs are tricky. Decompilers universally work better once you fill out structs and types.
Trail ratings are good intentions, half truths, and lies
November 24, 2024 at 9:28 PM
Trail ratings are good intentions, half truths, and lies
It has been zero days since someone has had the idea to standardize malware names. This has all happened before and it will happen again
November 24, 2024 at 3:27 AM
It has been zero days since someone has had the idea to standardize malware names. This has all happened before and it will happen again
Love love love when people first find packers x.com/mhicroibin/s...
x.com
x.com
November 19, 2024 at 5:37 PM
Love love love when people first find packers x.com/mhicroibin/s...
Sure you can chew the air but the sunsets are nice
November 17, 2024 at 3:31 AM
Sure you can chew the air but the sunsets are nice
Every problem can be solved with reverse engineering.
September 26, 2023 at 11:59 PM
Every problem can be solved with reverse engineering.