Hacker News with Generative AI: Reverse Engineering

Show HN: GhydraMCP – Agentic reverse engineering across multiple binaries (github.com/teal-bauer)
GhydraMCP is a bridge between Ghidra and AI assistants that enables AI-assisted reverse engineering through the Model Context Protocol (MCP).

Reverse Engineering, Artificial Intelligence, Software, Security

5 points by moeffju 3 days ago | 0 comments

GhidraMCP: Now AI can reverse malware [video] (youtube.com)

Cybersecurity, Artificial Intelligence, Malware Analysis, Reverse Engineering

41 points by surprisetalk 8 days ago | 1 comments

MCP server for Ghidra (github.com/LaurieWired)
ghidraMCP is an Model Context Protocol server for allowing LLMs to autonomously reverse engineer applications. It exposes numerous tools from core Ghidra functionality to MCP clients.

Reverse Engineering, Artificial Intelligence, Software, Security

355 points by tanelpoder 8 days ago | 70 comments

Reversing C++ Virtual Functions (alschwalm.com)
There are a few posts in various parts of the internet discussing reverse engineering C++, and these often address virtual functions to a large or small extent. However, I wanted to take some time to write about dealing with virtual functions in large, ‘enterprisy’ code-bases.

Reverse Engineering, C++, Programming

3 points by ibobev 10 days ago | 0 comments

Reviving the modprobe_path Technique: Overcoming search_binary_handler() Patch (theori.io)
This blog post introduces a new method for utilizing the Overwriting modprobe_path technique. Since this patch was merged last year, it is no longer possible to trigger modprobe_path in the Upstream kernel by executing dummy files.

Linux Kernel, Security, System Administration, Reverse Engineering

8 points by todsacerdoti 18 days ago | 3 comments

Shenmue (1999) reverse engineering reveals possible sun position oversight (wulinshu.com)
So far, we’ve only really touched on some of the fundamentals of reverse engineering with one game example, but this time we’re looking at something a bit different.

Reverse Engineering, Games, Shenmue, Video Games

183 points by BafS 21 days ago | 81 comments

Breaking AES encrypted firmware using neural networks (fromnothing.blog)
Firmware encryption is becoming a common feature in modern devices. From a security standpoint, that’s welcome news. However, for anyone reverse engineering or testing device security, dumping firmware is often one of the first tasks — and encryption makes that task extremely challenging, if not impossible. So, why are we seeing more encryption? There are several reasons.

Security, Firmware, Machine Learning, Reverse Engineering

26 points by zzbox 21 days ago | 2 comments

Reversing Samsung's H-Arx Hypervisor Framework (Part 1) (dayzerosec.com)
In many ways, mobile devices lead the security industry when it comes to defense-in-depth and mitigation.

Security, Mobile Devices, Reverse Engineering

46 points by ementally 23 days ago | 0 comments

Building an open-source Wi-Fi Mac layer for the ESP32 (esp32-open-mac.be)
The ESP32 is a low-cost microcontroller with Wi-Fi connectivity. Currently, the Wi-Fi MAC layer of the ESP32 is closed-source. This project aims to change that: by reverse engineering the hardware registers and software, we can build a networking stack that is open-source up to the hardware, instead of having to use the proprietary MAC layer.

Open-Source Hardware, ESP32, Networking, Reverse Engineering

161 points by pabs3 25 days ago | 25 comments

Sc2kfix – Reverse Engineering, Bugfixing, and Modding SimCity 2000 (sc2kfix.net)
sc2kfix is a project reverse engineering SimCity 2000 Special Edition for Windows and developing a bugfix and modding plugin to patch core game and compatibility bugs as well as enabling the development of new quality of life and gameplay features.

Reverse Engineering, Video Games, Modding, SimCity 2000

27 points by DannyPage 28 days ago | 3 comments

GoStringUngarbler: Deobfuscating Strings in Garbled Binaries (cloud.google.com)
In our day-to-day work, the FLARE team often encounters malware written in Go that is protected using garble. While recent advancements in Go analysis from tools like IDA Pro have simplified the analysis process, garble presents a set of unique challenges, including stripped binaries, function name mangling, and encrypted strings.

Security, Malware Analysis, Go Programming, Reverse Engineering, Deobfuscation

37 points by threat_analyst 28 days ago | 29 comments

XenonRecomp: Tool for recompiling Xbox 360 games to native executables (github.com/hedge-dev)

Xbox 360, Gaming, Recompiling, Reverse Engineering, Tools

6 points by klaussilveira 30 days ago | 0 comments

Windows NT for GameCube/Wii (github.com/Wack0)
PowerPC Windows NT ported to Nintendo GameCube/Wii/Wii U

Operating Systems, Gaming, Emulation, Reverse Engineering

12 points by nxobject 35 days ago | 1 comments

Reverse Engineering PowerPoint's XML to Build a Slide Generator (framer.website)
Making PowerPoint presentations is much harder than it seems. While there are several LLM-powered slide generators out there, none of them produce truly satisfying results.

Reverse Engineering, PowerPoint, Slide Generation, Programming, XML

7 points by antonoo 37 days ago | 1 comments

Spice86 – A PC emulator for real mode reverse engineering (github.com/OpenRakis)
Spice86 is a tool to execute, reverse engineer and rewrite real mode DOS programs for which source code is not available.

Reverse Engineering, Emulation, DOS, Software, Programming

175 points by alberto-m 41 days ago | 41 comments

Reverse Engineering PowerPoint's XML to Build a Slide Generator (listenlabs.ai)
Making PowerPoint presentations is much harder than it seems. While there are several LLM-powered slide generators out there, none of them produce truly satisfying results.

Reverse Engineering, PowerPoint, Presentation Software

37 points by walz 44 days ago | 4 comments

A reverse engineering of Linear's sync engine (github.com/wzhudev)
A reverse engineering of Linear's sync engine.

Reverse Engineering, Programming, Software, Open Source

6 points by meagher 44 days ago | 0 comments

TSforge: Reverse Engineering the Windows Software Protection Platform (massgrave.dev)
2025 marks nearly 20 years since the introduction of Windows' current DRM system, the Software Protection Platform (SPP). With it serving as the primary gateway to activation since early in Windows Vista's development, many have come up with clever ways of tricking it, from resetting grace period timers to emulating KMS servers to hooking bootloaders. While all of these systems abuse various activation methods, there has never been an exploit that directly attacked SPP itself... until now.

Reverse Engineering, Windows, Security, DRM

66 points by fraXis 48 days ago | 3 comments

Mellanox ConnectX-5: iRISC reverse engineering (irisc-research-syndicate.github.io)
NVIDIA/Mellanox has made a series of smart network interface cards(SmartNICs/NICs) called ConnectX primarily for server and datacenter uses. In this series of articles we will take a look at its firmware, and try to reverse engineer the instruction set for the iRISC processor.

Reverse Engineering, Hardware, Networking, Server Technology

19 points by irisc-hacker 52 days ago | 4 comments

Ghidra 11.3 has been released (github.com/NationalSecurityAgency)

New Releases, Security, Reverse Engineering, Software

3 points by voxadam 55 days ago | 0 comments

Disassembling a binary: linear sweep and recursive traversal (nicolo.dev)
Building your own set of analysis tools is a great exercise for those who already have some basics and allows you to later move on to implement more targeted analyses in reverse engineering. Even just seeing how the different algorithms can be implemented provides a mental framework that may help when reverse engineering more difficult-to-analyse executable files, i.e. obfuscated ones.

Reverse Engineering, Binary Analysis, Programming, Computer Science, Algorithms

12 points by todsacerdoti 58 days ago | 1 comments

Reverse Engineering Apple's typedstream Format (chrissardegna.com)
imessage-exporter’s goal is to provide the most comprehensive representation of iMessage data available. Message data is stored in a legacy format that appears to be a stream that represents objects.

Reverse Engineering, Apple, Data Formats, iMessage

127 points by css 58 days ago | 25 comments

Reverse-engineering and analysis of SanDisk High Endurance microSDXC card (2020) (ripitapart.com)

Hardware, Analysis, Reverse Engineering

274 points by userbinator 60 days ago | 131 comments

Decompiling 2024: A Year of Resurgance in Decompilation Research (mahaloz.re)
The year 2024 was a resurgant year for decompilation. Academic publications from that year made up nearly 30% of all top publications ever made in decompilation. In this post, I do a summarization and retrospective of both the academic and ideological progress of decompilation in 2024. Hint: decompilation research is back.

Decompilation, Research, Software Engineering, Reverse Engineering, Technology

147 points by matt_d 63 days ago | 61 comments

LoongArch64 Subjective Higlights (0x80.pl)
I get back to work on simdutf recently, and noticed that the library gained support for LoongArch64. This is a custom design and custom ISA by Loongson from China. They provide documentation for scalar ISA, but not for the vector extension. Despite that, GCC, binutils, QEMU and other tools already support the ISA. To our luck, Jiajie Chen did an impressive work of reverse engineering the vector stuff and published results online as The Unofficial LoongArch Intrinsics Guide.

Computer Architecture, Open Source, China, Reverse Engineering, Linux

49 points by camel-cdr 71 days ago | 13 comments

Interesting BiCMOS circuits in the Pentium, reverse-engineered (righto.com)
Intel released the powerful Pentium processor in 1993, establishing a long-running brand of processors.

Reverse Engineering, Hardware, Processors, Intel

57 points by DamonHD 71 days ago | 14 comments

Reverse Engineering Bambu Connect (rossmanngroup.com)
Bambu Connect is an Electron App with Security through Obscurity principles, hence it is inherently insecure.

Reverse Engineering, Security, Electron, Software

532 points by pabs3 73 days ago | 361 comments

Bambu Connect's Authentication X.509 Certificate and Private Key Extracted (hackaday.com)
Hot on the heels of Bambu Lab’s announcement that it would be locking down all network access to its X1-series 3D printers with new firmware, the X.509 certificate and private key from the Bambu Connect application have now been extracted by [hWuxH].

Security, 3D Printing, Reverse Engineering

69 points by nejsjsjsbsb 73 days ago | 26 comments

Reverse-engineering a carry-lookahead adder in the Pentium (righto.com)
Addition is harder than you'd expect, at least for a computer.

Computer Architecture, Hardware, Reverse Engineering, Digital Logic

69 points by DamonHD 74 days ago | 14 comments

Reverse Engineering a VanMoof E-Shifter – Part 2 – Decoding the Signals (mikecoats.com)
At the end of the last post, I left everyone hanging, having tapped into and sniffed some data being transferred on the wires between the bike and the e-shifter.

Reverse Engineering, Electronics, Cycling, Hardware

47 points by jandeboevrie 77 days ago | 21 comments