Josh Stroschein | The Cyber Yeti
@jstrosch.bsky.social
Reverse engineer at FLARE/Google | Pluralsight author | 😱 1M+ views on YT | 🎙️ Host of Behind the Binary podcast 👇
Pinned
OT Malware Analysis: FrostyGoop
This course will teach the basics of analyzing GoLang binaries and how to identify OT-specific threats using the FrostyGoop malware.
buff.ly
🚀 Ready to learn malware analysis and operational technology (OT)? My latest Pluralsight course has launched will walk you through OT protocol basics using modbus and the FrostyGoop malware as a case study 👇
https://buff.ly/4gJhlb5
As a bonus, we'll also talk about reversing GoLang binaries!
https://buff.ly/4gJhlb5
As a bonus, we'll also talk about reversing GoLang binaries!
⌛ It's been a while since I published a "real" blog, hope you enjoy it!
👉 cloud.google.com/blog/topics/...
This was part of the material we delivered at our DEFCON33 workshop too :)
👉 cloud.google.com/blog/topics/...
This was part of the material we delivered at our DEFCON33 workshop too :)
Time Travel Triage: An Introduction to Time Travel Debugging using a .NET Process Hollowing Case Study | Google Cloud Blog
The basics of WinDbg and Time Travel Debugging necessary to start incorporating it into your analysis.
cloud.google.com
November 13, 2025 at 6:00 PM
⌛ It's been a while since I published a "real" blog, hope you enjoy it!
👉 cloud.google.com/blog/topics/...
This was part of the material we delivered at our DEFCON33 workshop too :)
👉 cloud.google.com/blog/topics/...
This was part of the material we delivered at our DEFCON33 workshop too :)
🎙️ The next episode of Behind the Binary is here! In this episode we wrap up FLARE-On 12. We chat with several challenge authors (including the final challenge), discuss some creative cheating, and look at the impact of AI on the CtF 👇
open.spotify.com/episode/4jPP...
open.spotify.com/episode/4jPP...
EP18 10,000 DLLs and Too Much Math - Wrapping Up FLARE-On 12 with the FLARE Team
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
November 5, 2025 at 6:00 PM
🎙️ The next episode of Behind the Binary is here! In this episode we wrap up FLARE-On 12. We chat with several challenge authors (including the final challenge), discuss some creative cheating, and look at the impact of AI on the CtF 👇
open.spotify.com/episode/4jPP...
open.spotify.com/episode/4jPP...
🎙️ Ever wonder what it takes to secure a massive event like Black Hat? 🤔
Mark Overholser from Corelight joins us to pull back the curtain on how the Black Hat Network Operations Center (NOC) is built, monitored, and the craziest things that have shown up!
Spotify: open.spotify.com/episode/2F4x...
Mark Overholser from Corelight joins us to pull back the curtain on how the Black Hat Network Operations Center (NOC) is built, monitored, and the craziest things that have shown up!
Spotify: open.spotify.com/episode/2F4x...
EP17 What Lurks Beneath: Building a Robust Network at Black Hat with Mark Overholser
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
October 22, 2025 at 5:01 PM
🎙️ Ever wonder what it takes to secure a massive event like Black Hat? 🤔
Mark Overholser from Corelight joins us to pull back the curtain on how the Black Hat Network Operations Center (NOC) is built, monitored, and the craziest things that have shown up!
Spotify: open.spotify.com/episode/2F4x...
Mark Overholser from Corelight joins us to pull back the curtain on how the Black Hat Network Operations Center (NOC) is built, monitored, and the craziest things that have shown up!
Spotify: open.spotify.com/episode/2F4x...
👨🦯 Yikes, hard to believe the first video I uploaded was 14 years ago... I shared some tips on using sqlmap w/ burpsuie in BackTrack5!
www.youtube.com/watch?v=0buz...
Most of my early content was for course work, I never started making videos with any intent of growing a channel.
www.youtube.com/watch?v=0buz...
Most of my early content was for course work, I never started making videos with any intent of growing a channel.
October 21, 2025 at 3:03 PM
👨🦯 Yikes, hard to believe the first video I uploaded was 14 years ago... I shared some tips on using sqlmap w/ burpsuie in BackTrack5!
www.youtube.com/watch?v=0buz...
Most of my early content was for course work, I never started making videos with any intent of growing a channel.
www.youtube.com/watch?v=0buz...
Most of my early content was for course work, I never started making videos with any intent of growing a channel.
📣 Live stream tomorrow with Hahna Kane, join us at 3pm CDT/ 4pm EDT on YouTube 👇
youtube.com/live/HG_JsFq...
We'll be talking machine learning, data sciences and evolutions in AI - plus some demos!
youtube.com/live/HG_JsFq...
We'll be talking machine learning, data sciences and evolutions in AI - plus some demos!
Practical Applications in Machine Learning with Hahna Kane Latonick
Hahna Kane Latonick joins the live stream to talk about machine learning, reverse engineering, program analysis and more! We'll explore practical approaches ...
youtube.com
October 19, 2025 at 5:00 PM
📣 Live stream tomorrow with Hahna Kane, join us at 3pm CDT/ 4pm EDT on YouTube 👇
youtube.com/live/HG_JsFq...
We'll be talking machine learning, data sciences and evolutions in AI - plus some demos!
youtube.com/live/HG_JsFq...
We'll be talking machine learning, data sciences and evolutions in AI - plus some demos!
🚀 Check out the latest features and enhancements to the FLARE-VM 👇
security.googlecloudcommunity.com/community-bl...
security.googlecloudcommunity.com/community-bl...
Discord - Group Chat That’s All Fun & Games
Discord is great for playing games and chilling with friends, or even building a worldwide community. Customize your own space to talk, play, and hang out.
discord.com
October 9, 2025 at 7:01 PM
🚀 Check out the latest features and enhancements to the FLARE-VM 👇
security.googlecloudcommunity.com/community-bl...
security.googlecloudcommunity.com/community-bl...
🔥 Live stream is starting in under an hour - join us on YouTube to learn about the latest Suricata releases on how they fixed several high-severity CVEs!
youtube.com/live/ID9q7E4...
youtube.com/live/ID9q7E4...
LIVE: Suricata 8.0.1 & 7.0.12 Security Release: Fixing High-Severity CVEs with the Core Team
Join us live with the Suricata core team members as we break down the crucial security updates in the newly released Suricata 8.0.1 and 7.0.12. These are imp...
youtube.com
October 9, 2025 at 4:06 PM
🔥 Live stream is starting in under an hour - join us on YouTube to learn about the latest Suricata releases on how they fixed several high-severity CVEs!
youtube.com/live/ID9q7E4...
youtube.com/live/ID9q7E4...
🔥 Live stream this Thursday at 12pm CDT! Peter Manev and Lukas Sismis are here to talk about the latest Suricata releases, which fix several high severity CVEs...
Join us on YouTube - youtube.com/live/ID9q7E4...
Join us on YouTube - youtube.com/live/ID9q7E4...
LIVE: Suricata 8.0.1 & 7.0.12 Security Release: Fixing High-Severity CVEs with the Core Team
Join us live with the Suricata core team members as we break down the crucial security updates in the newly released Suricata 8.0.1 and 7.0.12. These are imp...
youtube.com
October 7, 2025 at 3:00 PM
🔥 Live stream this Thursday at 12pm CDT! Peter Manev and Lukas Sismis are here to talk about the latest Suricata releases, which fix several high severity CVEs...
Join us on YouTube - youtube.com/live/ID9q7E4...
Join us on YouTube - youtube.com/live/ID9q7E4...
🔥 The next episode of Behind the Binary is here! We're joined by renowned security researcher Hahna Kane Latonick for a deep dive into the powerful world where reverse engineering meets data science.
🎧 open.spotify.com/episode/2CFB...
🎧 open.spotify.com/episode/2CFB...
EP16 The Machine Learning Revolution in Reverse Engineering with Hahna Kane Latonick
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
October 2, 2025 at 4:02 PM
🔥 The next episode of Behind the Binary is here! We're joined by renowned security researcher Hahna Kane Latonick for a deep dive into the powerful world where reverse engineering meets data science.
🎧 open.spotify.com/episode/2CFB...
🎧 open.spotify.com/episode/2CFB...
🥷 FLARE-On 12 starts today - prepare yourself with this episode of Behind the Binary 👇
open.spotify.com/episode/4eS4...
open.spotify.com/episode/4eS4...
EP15 Getting Ready for FLARE-On 12 - An Inside Look at the Reverse Engineering Gauntlet
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
September 26, 2025 at 7:02 PM
🥷 FLARE-On 12 starts today - prepare yourself with this episode of Behind the Binary 👇
open.spotify.com/episode/4eS4...
open.spotify.com/episode/4eS4...
🏗️ More assembly basics - in this short, we'll cover how to create a basic FOR loop in assembly!
🎯 youtube.com/shorts/eddBB...
🎯 youtube.com/shorts/eddBB...
🏗️ Assembly Shorts - Creating a FOR Loop
In this short, we'll cover how to create a basic FOR loop in assembly.
To see how I created the printf wrapper functions: https://youtu.be/NQjJLpKkH28
Join this channel to get access to…
youtube.com
September 26, 2025 at 5:15 PM
🏗️ More assembly basics - in this short, we'll cover how to create a basic FOR loop in assembly!
🎯 youtube.com/shorts/eddBB...
🎯 youtube.com/shorts/eddBB...
🏗️ Here is a quick look at how I link object files from NASM and C to create the basic wrapper functions for printf in my recent assembly shorts:
youtu.be/NQjJLpKkH28
youtu.be/NQjJLpKkH28
Linking Object Files from C and NASM in Windows
In this video, we tackle a common challenge: linking multiple object files from both NASM assembly and C on Windows.
You'll learn how to create C wrapper functions to bridge the gap and successfully…
youtu.be
September 25, 2025 at 5:02 PM
🏗️ Here is a quick look at how I link object files from NASM and C to create the basic wrapper functions for printf in my recent assembly shorts:
youtu.be/NQjJLpKkH28
youtu.be/NQjJLpKkH28
🎙️ Behind the Binary: Did you miss our latest episode on crypto heists and Web3? We dove into the "Wild West" of Web3 and decentralized finance, where thefts and hacks are now more common than in traditional finance.
Get caught-up 👉 open.spotify.com/episode/4MMp...
Get caught-up 👉 open.spotify.com/episode/4MMp...
EP14 Web3's Dark Side: Unmasking the New Age of Financial Crime
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
September 24, 2025 at 5:06 PM
🎙️ Behind the Binary: Did you miss our latest episode on crypto heists and Web3? We dove into the "Wild West" of Web3 and decentralized finance, where thefts and hacks are now more common than in traditional finance.
Get caught-up 👉 open.spotify.com/episode/4MMp...
Get caught-up 👉 open.spotify.com/episode/4MMp...
🛠️ Part of gaining proficiency with IDA Pro is understanding how to interpret its output. In this short, we'll explore the offset keyword and how IDA uses it to display addresses and offsets.
youtube.com/shorts/MSsmA...
youtube.com/shorts/MSsmA...
🏃♂️ IDA Basics - What are Offsets?
Part of gaining proficiency with IDA is understanding how to interpret it's output. In this short, we'll explore the offset keyword and how IDA uses it to display addresses and offsets.
Join this…
youtube.com
September 18, 2025 at 5:15 PM
🛠️ Part of gaining proficiency with IDA Pro is understanding how to interpret its output. In this short, we'll explore the offset keyword and how IDA uses it to display addresses and offsets.
youtube.com/shorts/MSsmA...
youtube.com/shorts/MSsmA...
📣 Apologies, folks! Today's live stream with Hahna Kane has been postponed. We're working on rescheduling for October and will share the new date soon. Stay tuned!
September 17, 2025 at 7:01 PM
📣 Apologies, folks! Today's live stream with Hahna Kane has been postponed. We're working on rescheduling for October and will share the new date soon. Stay tuned!
The next episode of Behind the Binary is here! Getting ready for FLARE-On 12? Not sure what it even is? This episode is for you! We’re joined by FLARE-On host and challenge author Nick Harbour and challenge author Blas Kojusner to give you an inside look!
open.spotify.com/episode/4eS4...
open.spotify.com/episode/4eS4...
EP15 Getting Ready for FLARE-On 12 - An Inside Look at the Reverse Engineering Gauntlet
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
September 17, 2025 at 5:02 PM
The next episode of Behind the Binary is here! Getting ready for FLARE-On 12? Not sure what it even is? This episode is for you! We’re joined by FLARE-On host and challenge author Nick Harbour and challenge author Blas Kojusner to give you an inside look!
open.spotify.com/episode/4eS4...
open.spotify.com/episode/4eS4...
🚀 Live stream this week with the one and only Hahna Kane Latonick! We'll be chatting practical applications of machine learning and demoing some LLM-based reversing with Ghidra and MCPs!
Join us on YouTube 👉 youtube.com/live/_SIGeLA...
Join us on YouTube 👉 youtube.com/live/_SIGeLA...
Practical Applications in Machine Learning with Hahna Kane Latonick
Hahna Kane Latonick joins the live stream to talk about machine learning, reverse engineering, program analysis and more! We'll explore practical approaches ...
youtube.com
September 15, 2025 at 7:02 PM
🚀 Live stream this week with the one and only Hahna Kane Latonick! We'll be chatting practical applications of machine learning and demoing some LLM-based reversing with Ghidra and MCPs!
Join us on YouTube 👉 youtube.com/live/_SIGeLA...
Join us on YouTube 👉 youtube.com/live/_SIGeLA...
🚀 Miss the stream with Xusheng? You can learn all about Binary Ninja's time-travel debugging support plus some not yet released features 👇
youtube.com/live/-eVyYB8...
youtube.com/live/-eVyYB8...
Leveraging WinDbg in Binary Ninja - TTD and the WinDbg Backend
Xusheng Li, software engineer at Vector 35, joins the stream to show how to maximize the WinDbg backend directly through Binary Ninja. We'll also take a look...
youtube.com
September 15, 2025 at 5:00 PM
🚀 Miss the stream with Xusheng? You can learn all about Binary Ninja's time-travel debugging support plus some not yet released features 👇
youtube.com/live/-eVyYB8...
youtube.com/live/-eVyYB8...
🧙 Heard of Magika? This is an AI-powered file detection utility - learn how you can leverage it's capabilities and what makes it different than the file utility in this short 👇
youtube.com/shorts/k1w3y...
youtube.com/shorts/k1w3y...
🧙♂️ Magika Unveiled: AI-Powered File Type Detection in Action!
Discover Magika, Google’s open-source, AI-driven file type detection tool that revolutionizes how we identify binary and textual files! In this short video, we explore how Magika uses a lightweight…
youtube.com
September 9, 2025 at 6:02 PM
🧙 Heard of Magika? This is an AI-powered file detection utility - learn how you can leverage it's capabilities and what makes it different than the file utility in this short 👇
youtube.com/shorts/k1w3y...
youtube.com/shorts/k1w3y...
🚀 Live stream this Thursday! Xusheng Li, developer at Vector 35 (Binary Ninja) joins the stream to show you how to max out your debugging experience with WinDbg. Note the time, we'll be streaming at 8pm CDT!
🎯 Join us on YouTube youtube.com/live/-eVyYB8...
🎯 Join us on YouTube youtube.com/live/-eVyYB8...
Leveraging WinDbg in Binary Ninja - TTD and the WinDbg Backend
Xusheng Li, software engineer at Vector 35, joins the stream to show how to maximize the WinDbg backend directly through Binary Ninja. We'll also take a look...
youtube.com
September 8, 2025 at 5:01 PM
🚀 Live stream this Thursday! Xusheng Li, developer at Vector 35 (Binary Ninja) joins the stream to show you how to max out your debugging experience with WinDbg. Note the time, we'll be streaming at 8pm CDT!
🎯 Join us on YouTube youtube.com/live/-eVyYB8...
🎯 Join us on YouTube youtube.com/live/-eVyYB8...
🔔 Miss the stream with Peter Manev? No worries, you can get caught up here and learn about how the latest Suricata 8 features can help with threat hunting and detection 👇
youtube.com/live/LrxU5hj...
youtube.com/live/LrxU5hj...
Suricata 8: Unveiling the Next Generation of Threat Detection with Peter Manev
Peter Manev, a Suricata Project evangelist, a threat hunter and a co-founder and chief strategy officer (CSO) of Stamus Networks, joins the live stream to di...
youtube.com
September 6, 2025 at 5:00 PM
🔔 Miss the stream with Peter Manev? No worries, you can get caught up here and learn about how the latest Suricata 8 features can help with threat hunting and detection 👇
youtube.com/live/LrxU5hj...
youtube.com/live/LrxU5hj...
🥷 Learn how to modify eflags/rflags from the WinDbg command line using the r utility in this short 👇
youtube.com/shorts/Cl9Xp...
youtube.com/shorts/Cl9Xp...
How to Set Flags in EFLAGS/RFLAGS Using the r Command in #WinDbg
Learn a powerful WinDbg trick to set flags in the EFLAGS/RFLAGS register using the r command! Since WinDbg’s GUI doesn’t offer an easy way to modify flags, this video shows you how to do it…
youtube.com
September 5, 2025 at 3:00 PM
🥷 Learn how to modify eflags/rflags from the WinDbg command line using the r utility in this short 👇
youtube.com/shorts/Cl9Xp...
youtube.com/shorts/Cl9Xp...
🚀 Ready to learn about decentralized finance, web3 technology and how it is abused by threat actors? The latest episode of Behind the Binary is here! In this panel episode, guests Blas Kojusner, Joe Dobson and Robert Wallace will break it down 👇
open.spotify.com/episode/4MMp...
open.spotify.com/episode/4MMp...
EP14 Web3's Dark Side: Unmasking the New Age of Financial Crime
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
September 3, 2025 at 5:00 PM
🚀 Ready to learn about decentralized finance, web3 technology and how it is abused by threat actors? The latest episode of Behind the Binary is here! In this panel episode, guests Blas Kojusner, Joe Dobson and Robert Wallace will break it down 👇
open.spotify.com/episode/4MMp...
open.spotify.com/episode/4MMp...