Willi Ballenthin

@mastodon @github @twitter

Software reverse engineer writing about disassembly, debugging, emulation; programming in Python and Rust; and listening to post-rock and -metal. Uses this stuff. Follows these sources.

blog

bookmarks

projects

capa

identify malware capabilities

FLOSS

recover obfuscated strings

EVTXtract

EVTX event log recovery