• Using a virtualenv for IDAPython
  March 25, 2025
• BinExport2: Enumerating a Function's Instructions
  December 11, 2024
• PyCon US 2024 Recordings
  August 6, 2024
• Current RSS subscriptions
  June 11, 2024
• Rust compilation time
  March 20, 2024
• NPM malware results, Oct 4, 2023
  October 4, 2023
• NPM malware hunt with OSSF Package Analysis, Sept 21, 2023
  September 21, 2023
• NPM malware hunt with OSSF Package Analysis, Sept 20, 2023
  September 20, 2023
• Sifting through crates.io for malware with OSSF Package Analysis
  September 13, 2023
• Analyzing Go programs with GoReSym
  July 20, 2023
• IDAPython: ida-graph-exporter
  June 20, 2023
• enumerating lines from a large file in Python
  May 16, 2023
• notes for working with Textual in Python
  April 26, 2023
• XOR decoding data in Python
  March 28, 2023
• interesting IDA plugins
  February 28, 2023
• ghidra: ML extension
  February 26, 2023
• shellcode hash prevalence
  February 22, 2023
• pytest: useful options
  February 15, 2023
• biodiff: introduction
  March 6, 2022
• Browser Tabs: 2022-02-03
  February 3, 2022
• TIL: 2021-01
  January 1, 2021
• TIL: 2020-12
  December 27, 2020
• Extracting WEVT_TEMPLATES from PE files
  June 1, 2020
• Dynamic native library search path on OpenJDK14
  May 26, 2020
• Sketch: Modern Python in Ghidra
  May 20, 2020
• Learning miasm: Part 2: Analyzing instructions
  January 12, 2020
• Learning miasm: Part 1: Loading a PE
  January 9, 2020
• Parsing Binary Data with `vstruct`
  September 8, 2015
• Recent projects
  September 2, 2015
• Towards better tools: Part 2
  February 8, 2014
• Towards better tools: Part 1
  February 7, 2014
• MFT Analysis Presentation
  December 13, 2013
• April Fool's: TSK and the Registry
  April 1, 2013