Willi Ballenthin

@mastodon @github @twitter
Software reverse engineer writing about disassembly, debugging, emulation; programming in Python and Rust; and listening to post-rock and -metal. Uses this stuff. Follows these sources.

blog

bookmarks

projects

capa
identify malware capabilities
FLOSS
recover obfuscated strings
EVTXtract
EVTX event log recovery