🏡
  1. Why you should stop using product roadmaps and try the GIST Framework
  2. Mixture-of-Agents Enhances Large Language Model Capabilities
  3. Docling - Docling
  4. Claude Code Best Practices Anthropic
  5. Aiding reverse engineering with Rust and a local LLM - hn security

generated: April 29, 2025 at 09:21:06

  1. April 28, 2025
    1. 🔗 r/reverseengineering A C2 extractor python module for known python info stealer rss

      Hey everyone, I'm a 15-year-old dev currently learning reverse engineering. It's been a while since I started working on Ungrabber (it was originally a website), and it's my first real project. This module is designed to retrieve the C2 (Discord webhook in this case) from many well-known Python info stealers, whether they are compiled with Pyinstaller or directly from a .pyc file.

      Any feedback, suggestions, or pull requests are very welcome. Thank you for checking it out :3

      submitted by /u/lululepuoff
      [link] [comments]

    2. 🔗 News Minimalist Gaza blockade depletes World Food Programme stocks + 1 more story rss

      Today ChatGPT read 25115 top news stories. After removing previously covered events, there are 2 articles with a significance score over 5.9.

      [6.1] Gaza's blockade caused World Food Programme to exhaust supplies —nbcnews.com(+40)

      The World Food Programme (WFP) announced Friday that it has run out of food in Gaza after a 54-day blockade imposed by Israel. Hot meal kitchens are expected to run out of food soon.

      The WFP, the largest provider of hot meals in Gaza, has been unable to replenish supplies since the blockade began March 2. All border crossings are closed, preventing entry of humanitarian aid, including over 116,000 tons of WFP food.

      The closure has exacerbated food insecurity with prices rising up to 1400% and a risk of starvation, disease, and death to over 2 million people, according to the WFP. International organizations and governments are urging Israel to allow humanitarian aid to enter the region.

      [6.2] North Korea confirms it has dispatched troops to Russia to fight Ukraine —latimes.com(+120)

      North Korea has officially acknowledged deploying troops to Russia to aid in its war against Ukraine, marking its first direct military involvement in a major conflict since the Korean War.

      The deployment, estimated at 10,000 to 12,000 troops, aims to help Russia regain the Kursk region, according to North Korean state media. This follows a mutual defense treaty signed by Kim Jong Un and Vladimir Putin, obligating military assistance if either nation is attacked.

      The announcement came after Russia claimed to have ousted Ukrainian forces from the Kursk region, a claim Ukraine denies. North Korea's involvement raises concerns about potential technology transfers and economic support from Russia.

      Highly covered news with significance over 5.5

      [5.7] Kim Jong Un unveils nuclear-missile-launching warship — news.sky.com (+10)

      [5.7] Trump authorizes U.S. seabed mining in international waters — nytimes.com (+21)

      [5.6] Global military spending growth in 2024 was fastest since end of Cold War — dw.com (+28)

      [5.6] China approves building of 10 new nuclear power units for $27 billion — economictimes.indiatimes.com (+4)

      [5.5] Pakistan expects imminent Indian military incursion — reuters.com (+466)

      Thanks for reading!

      — Vadim

      You can block any news topic you'd rather avoid with Premium.

      Powered by beehiiv

    3. 🔗 r/reverseengineering Rverse engineered 3d model format from a 1999 game rss

      In my free time I like to go thru game abandonware sites to exercise with reverse engineering (model formats for the most) stumbled upon this simple game from the 90's, the format is simple and I enjoyed reversing it and writing an exporter for it.

      submitted by /u/Repulsive-Clothes-97
      [link] [comments]

    4. 🔗 r/reverseengineering /r/ReverseEngineering's Weekly Questions Thread rss

      To reduce the amount of noise from questions, we have disabled self-posts in favor of a unified questions thread every week. Feel free to ask any question about reverse engineering here. If your question is about how to use a specific tool, or is specific to some particular target, you will have better luck on the Reverse Engineering StackExchange. See also /r/AskReverseEngineering.

      submitted by /u/AutoModerator
      [link] [comments]

    5. 🔗 r/reverseengineering HexWalk 1.9.0, Hex analyzer new release for Windows/Mac/Linux with new features for x86, ARM and MIPS (give it a try!) rss

      https://www.hexwalk.com

      submitted by /u/gcarmix1
      [link] [comments]

    6. 🔗 r/wiesbaden Der Weg zum Baum / Hug the tree rss

      https://www.reddit.com/r/Wiesbaden/s/1h9eUAOSmI

      Ein Mensch ein Wort. 5k ein Baum.

      aaaber...

      Wir brauchen ein cooles Banner. Wenn wir die 5000 r/Wiesbadenerinnen feiern, soll es festlich sein, ebenso ein Schritt in die Zukunft. Ein schönes Banner sollte unsere Gemeinschaft komplementieren. Bei sub 1k war ich voller Ambitionen aber pleite. Diesmal schmeiße ich 100€ auf die Kreativität, die ein schönes Banner erstellt. Es ist mir wichtig, dass unser Banner aus Wiesbaden oder r/Mainz❤️ kommt. 100€ sind nicht viel, es ist als Aufwandsentschädigung für eine Herzensangelegenheit zu sehen & eine Erwähnung im Sub gibts obendrauf (ig link, o.Ä. an sehr prägnanter Stelle für 'ne Zeit).

      Die Anforderungen: - 1920x384 Pixel - Freier Lauf. Artsy, kein Foto, no Ai. - Der Stil ist egal, solange man Wiesbaden erkennt. Eskaliert.

      Wie funktioniert's? - In einem Monat, am 02.06.2025, gibt's einen Thread, in dem die Bilder geteilt werden können. - Markiert euren Post mit einer Nummer. - Anschließend wird in einem separatem Thread abgestimmt. - Cash regeln wir über Direktnachricht.

      Wir sind klein, vor allem fein. Bei r/Wiesbaden kann man helfen, sich stilvoll fetzen & wortgewandt ausdrücken. Behalten wir das bei.

      Good luck & have fun ⚜️⚜️⚜️

      https://www.reddit.com/r/Wiesbaden/s/1h9eUAOSmI

      One person one word. 5k one tree.

      The catch.....

      We need a cool banner. When we celebrate the 5000 r/Wiesbadenerinnen, it should be festive, as well as a step into the future. A beautiful banner should complement our community. At sub 1k I was full of ambition but broke. This time I'm throwing 100€ at the creativity that creates a beautiful banner. It is important to me that our banner comes from Wiesbaden or r/Mainz❤️. 100€ is not much, it is to be seen as an expense allowance for a matter of the heart & a mention in the sub is on top (ig link, or similar in a very concise place for a while).

      The requirements: - 1920x384 pixels - Free run. Artsy, no photo, no Ai. - The style doesn't matter as long as you recognize Wiesbaden. Escalate.

      How does it work? - In one month, on 02.06.2025, there will be a thread in which the pictures can be shared. - Mark your post with a number. - Voting will then take place in a separate thread. - Cash is handled via direct message.

      At r/Wiesbaden you can help, express yourself stylishly and eloquently. Let's keep it that way.

      Good luck & have fun ⚜️⚜️⚜️

      submitted by /u/kaelteidiotie
      [link] [comments]

  2. April 27, 2025
    1. 🔗 r/reverseengineering Symbol Database for Reverse Engineers rss

      Hi Reddit, releasing a new side project I’ve been working on for awhile :D it's (supposed to be) a huge database of debug symbols/type info/offsets/etc, making it easier for reverse engineers to find & import pre-compiled structs of known libraries into IDA by leveraging DWARF information.

      The workflow of this is basically: you search for a struct -> find your target lib/binary -> download it -> import it to your IDB file -> profit :) you got all the structs ready to use/recovered. This can be useful when you get stripped binaries/statically compiled.

      So far i added some known libraries that are used in embedded devices such as json-c, Apache APR, random kernel modules such as Qualcomm’s GPU driver and more :D some others are imported from public deb repos.

      i'm accepting new requests for structs and libs you'd like to see there hehe

      submitted by /u/pwntheplanet
      [link] [comments]

    2. 🔗 r/reverseengineering Create a Tiny DLL and Explore What's inside a DLL rss

      submitted by /u/paulpjoby
      [link] [comments]

    3. 🔗 r/wiesbaden Queere Menschen kennenlernen/ Whatsappgruppe- WB/MZ rss

      Hallo Leutee ☀️

      Ich lebe jetzt schon eine Weile in Wiesbaden, habe aber immer noch nicht so richtigen Anschluss an eine Queere Bubble gefunden.

      Vielleicht geht es ja dem ein oder anderen Menschen auch so. Daher dachte ich, es wäre eine coole Idee eine Whatsappgruppe zu gründen, wo man (hoffentlich) nette Leute zum Treffen kennenlernt und vielleicht ne Truppe hat, mit der man coole Dinge/Aktivitäten/etc. erleben kann, ggf auch zusammen auf Demos.

      Es geht nicht um Dating! Sondern vorrangig darum, queere Menschen kennenzulernen, einen Safe Space zu haben, wo jeder/jede akzeptiert wird so wie man ist, und natürlich im besten Falle auch dauerhafte Freundschaften/Freundschaftsgruppen entstehen.

      Wenn Interesse besteht, gerne mal kommentieren. Oder gibt es sowas schon, dann würde ich mich über mehr Infos freuen.

      Schönen Tag euch und freue mich über eure Nachrichten.

      submitted by /u/Longjumping-One-3650
      [link] [comments]

    4. 🔗 r/reverseengineering Lazarus Group Breached Semiconductor and Software Firms in South Korea rss

      submitted by /u/Doug24
      [link] [comments]

  3. April 26, 2025
    1. 🔗 Register Spill Joy & Curiosity #37 rss

      A friend and I were talking about our computer setups at home. The big question was what data lives where, specifically what data we keep on our personal machines and what we keep on the NAS.

      My philosphy? I like to think that Robert De Niro's character in the diner scene in Heat was talking about keeping data on his NAS, not on his laptop, which is exactly how I think about it:

      A guy told me one time, "Don't let yourself get attached to anything you are not willing to walk out on in 30 seconds flat if you feel the heat around the corner."

      Anyway, here's some links.

      • The most thought-generating thing I read this week: AI Horseless Carriages. Not only is it one of the best introductions to, well, the whole concept of a prompt that I came across, and not only is it interactive, but it asks some foundation-touching questions about what software even is in the age of AI. "My core contention in this essay is this: when an LLM agent is acting on my behalf I should be allowed to teach it how to do that by editing the System Prompt."

      • Atuin Desktop is out. Looks lovely. If this can run terminal commands on a remote host, it could replace the five Markdown files that contain everything I know about how to do anything on my Raspberry Pis. (If you haven't tried Atuin to manage your shell history, give it a shot!)

      • This is great: "In short, I thought my job was to be right. I thought that was how I proved my worth to the company. But that was all wrong. My job was to get things done and doing anything meaningful past a certain point requires more than one person. If you are right but nobody wants to work with you, then how valuable are you really?"

      • "Just as a chef might use a food processor for tedious prep work but would never dream of automating the creative aspects of recipe development and flavor balancing, we should use AI for what it's good at while preserving the parts of coding that bring us joy and growth."

      • Phil Eaton on "the path to promotion and a successful and interesting career": "Burn your title. Burn your job description. I mean, keep your boss happy for sure. Keep your teammates happy by supporting them and building them up and communicating well. But don't wait to be officially made a lead or given a new title to do what otherwise fits into that intersection above." (Reminded me of So Good They Can't Ignore You which I've recommended to more people than I can remember.)

      • Here's a hypothesis of mine: whenever you find a piece of software that makes you think "this wouldn't exist if all were right in the world" there's a good chance that PDFs are involved. I mean: "a proof-of-concept project, showing that it's possible to run an entire Large Language Model in nothing but a PDF file".

      • Reading about arbitrary code execution in PDFs reminded me of this NSO zero-click iMessage exploit. It's mind-bending. They sent a "fake gif" via iMessage, iMessage ended up using the CoreGraphics PDF parser to analyze the "gif" and, from stage left, JBIG2 enters. JBIG2 is an old image compression standard and that sounds boring, but, well: "JBIG2 doesn't have scripting capabilities, but when combined with a vulnerability, it does have the ability to emulate circuits of arbitrary logic gates operating on arbitrary memory. So why not just use that to build your own computer architecture and script that!? That's exactly what this exploit does. Using over 70,000 segment commands defining logical bit operations, they define a small computer architecture […]" Go read the whole post and get goosebumps whenever someone mentions PDFs.

      • This ain't a job board, but this is a sentence I want to write: you should hire the topless, muscled programmer.

      • I'm not a big sports guy. I don't watch any sport regularly, I can't remember any of the important games that I have watched, I've never seen a full NBA game. But I do love hearing and reading about professional athletes. I like sport documentaries. I've watched The Last Dance four times and watch Moneyball at least once a year. All of that is to say that I really enjoyed this one: The Genius of Jokic.

      • Good questions in here: "when you miss deadlines: do you tell everyone about it ahead of time or do people sometimes tell you? when you think of important things for the company to do: do you do get them done or do you suggest that they get done?"

      • Came across and read the first thing Anthony Bourdain published in The New Yorker, before his book Kitchen Confidential came out: Don't Eat Before Reading This. It's very good. "I love the sheer weirdness of the kitchen life: the dreamers, the crackpots, the refugees, and the sociopaths with whom I continue to work; the ever-present smells of roasting bones, searing fish, and simmering liquids; the noise and clatter, the hiss and spray, the flames, the smoke, and the steam." Imagine how it was received in 1999.

      • Dan Shipper had Kevin Kelly on his podcast and it was lovely conversation. Unique but I can't explain why. I listened to it yesterday in the car and frequently switched to ChatGPT's voice mode to dictate some notes that listening to these two made me want to take down.

      • There's a lot of prompting gold in here: GPT-4.1 Prompting Guide. The most fascinating bit to me is the apply-patch tool at the end. It's wild to me that they trained the model on that format, this human/machine-readable hybrid format.

      • In the first few minutes of the podcast episode, which I had listened to earlier this week, Shipper and Kelly talk about Annie Dillard and how much they adore her writing. Years ago I read Dillard's Total Eclipse. Some of the images it evoked in my mind have been stuck there ever since and I strongly recommend you read it. But that's all I had read of her work, so, prompted by Shipper and Kelly, I sought out more and the first thing I read was this essay: Write Till You Drop. And… Well. You need to read it. It's possibly one of the best things I've ever read about writing, about art, about, I guess, doing things, creating things. I highlighted at least ten sentences and paragraphs and even though I really want to I can't quote them all here, so instead here's only one: "Why are we reading, if not in hope that the writer will magnify and dramatize our days, will illuminate and inspire us with wisdom, courage and the hope of meaningfulness, and press upon our minds the deepest mysteries, so we may feel again their majesty and power?" And, god damn, what a title for an essay.

      • With "god damn, what a title" still echoing in my mind, I read the next thing I found, an excerpt from Dillard's book Pilgrim at Tinker Creek, and, god damn, it's good. "This is it, I think, this is it, right now; the present, this empty gas station, here, this western wind, this tang of coffee on the tongue …"

      • Russ Cox with a very neat debugging trick: Differential Coverage for Debugging.

      • This is so funny to me and I don't know why.

      If you also wonder whether system prompts shouldn't be exposed to the user, you should probably subscribe:

    2. 🔗 r/reverseengineering The first publically shamed individual for leaking IDA Pro is now a Senior Security Engineer @ Apple rss

      The archived page reads: "We will never deliver a new license for our products to any company or organization employing Andre Protas"

      Funnily enough, macOS is the OS featured in all of the screenshots on the hex rays website.

      submitted by /u/EmojiMasterYT
      [link] [comments]

    3. 🔗 r/reverseengineering Ghosting AMSI: Cutting RPC to disarm AV rss

      AMSI’s backend communication with AV providers is likely implemented via auto- generated stubs (from IDL), which call into NdrClientCall3 to perform the actual RPC.

      By hijacking this stub, we gain full control over what AMSI thinks it’s scanning.

      submitted by /u/Echoes-of-Tomorroww
      [link] [comments]

    4. 🔗 r/wiesbaden 27. April 2025 | Kidical Mass Wiesbaden rss

      submitted by /u/Whoosherx
      [link] [comments]

    5. 🔗 r/reverseengineering Microsoft Won't Fix This Game - So I Hacked It rss

      submitted by /u/RazerOG
      [link] [comments]

generated: April 29, 2025 at 09:21:54