Reverse Engineering | Netspooky's Blog


	netspooky/pdiff2 // 2023-05-11 A revised version of the pdiff tool
	Protocol RE Talk // 2023-05-11 Slides, notes, and resources from a talk I did on Protocol RE
	scare - Simple Configurable Assembly REPL and Emulator // 2023-03-22 A multi-arch assembly REPL and emulator for your command line.
	list_protos.sh // 2023-03-02 List all the protocols in a given pcap using tshark
	The PCAP File Format // 2022-11-03 Descriptions of PCAP and PCAPNG files
	BGGP3: LEMONADE.BIN // 2022-09-01 BGGP3 entry that DOSes Rizin and Radare2 with SOPHIE lyrics.
	RE Tips: Common String Representations // 2022-05-09 How strings look in binary form
	netspooky/importsort // 2021-10-10 A python tool to group imports from multiple Windows Binaries.
	RE Tips: Timestamps // 2021-09-10 Identifying timestamps in unknown protocols and binary formats
	Encoding Mutations: A Base64 Case Study // 2021-02-12 Writeup about (ab)using base64 implementations
	Python 3.7+ .pyc file format // 2020-12-15 Notes on the .pyc format
	netspooky/pdiff // 2020-06-25 A revised version of the pdiff tool
	Intro to Firmware Analysis (PancakesCon2020) // 2020-03-22 Notes from my talk about analyzing firmware at PancakesCon 2020.
	netspooky/inhale // 2019-09-14 A malware static analysis and classification tool.