Erwan Grelet's Avatar

Erwan Grelet

@ergrelet.bsky.social

Fond of reverse engineering and software development. Doing security engineering at some company.

40 Followers  |  104 Following  |  4 Posts  |  Joined: 14.12.2024  |  1.5793

Latest posts by ergrelet.bsky.social on Bluesky


Preview
Hacking conference Def Con bans three people linked to Epstein | TechCrunch The Def Con hacking conference banned hackers Pablos Holman and Vincenzo Iozzo, as well as former MIT Media Lab director Joichi Ito, from attending the annual conference after their reported connectio...

NEW: Def Con banned hackers Pablos Holmes and Vincenzo Iozzo, as well as former MIT Media Lab director Joichi Ito, from attending the conference based on their links to Jeffrey Epstein.

Holmes and Iozzo exchanged emails with Epstein for several years.

18.02.2026 22:06 β€” πŸ‘ 113    πŸ” 37    πŸ’¬ 3    πŸ“Œ 4
Post image

Meta is putting a "Name Tag" feature in Ray-Bans - facial recognition through the glasses' camera. You look at someone, AI tells you who they are.
In an internal document, the company wrote that the timing is good because civil society groups are busy with politics and won't cause problems.

14.02.2026 17:19 β€” πŸ‘ 1219    πŸ” 760    πŸ’¬ 34    πŸ“Œ 152

Hello, World! Welcome back! I have new blog :-)

tracesofhumanity.org/hello-world/

01.02.2026 17:18 β€” πŸ‘ 25    πŸ” 5    πŸ’¬ 4    πŸ“Œ 0

Hadn't realised that the third party review of Twitter's chat protocol had been published and wow github.com/trailofbits/...

28.01.2026 18:21 β€” πŸ‘ 119    πŸ” 35    πŸ’¬ 2    πŸ“Œ 6
Bypassing Windows Administrator Protection - Project Zero A headline feature introduced in the latest release of Windows 11, 25H2 is Administrator Protection. The goal of this feature is to replace User Account Cont...

No security feature is perfect. @tiraniddo.dev reviewed Windows’ new Administrator Protection and found several bypasses.

projectzero.google/2026/26/wind...

26.01.2026 17:56 β€” πŸ‘ 4    πŸ” 5    πŸ’¬ 0    πŸ“Œ 0
Preview
RE//verse 2026 Schedule

The RE//verse 2026 schedule is live and the lineup is stacked! Check it out:
reverse-2026.sessionize.com/schedule

16.01.2026 19:30 β€” πŸ‘ 3    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
A 0-click exploit chain for the Pixel 9 Part 1: Decoding Dolby - Project Zero Over the past few years, several AI-powered features have been added to mobile phones that allow users to better search and understand their messages. One ef...

Today, Project Zero released a 0-click exploit chain for the Pixel 9. While it targets the Pixel, the 0-click bug and exploit techniques we used apply to most other Android devices.

projectzero.google/2026/01/pixe...

15.01.2026 18:56 β€” πŸ‘ 60    πŸ” 36    πŸ’¬ 1    πŸ“Œ 2
REcon 2026 - Premier Reverse Engineering Conference REcon 2026 - Premier reverse engineering and cybersecurity conference in Montreal

🚨 REcon 2026 is LIVE!
πŸš€ Call for papers and registration are now open!

Join the world's top reverse engineers & exploit devs in Montreal:
πŸ›  Trainings: June 15-18
πŸ“… Conference: June 19-21
Tickets & early bird now open β†’ recon.cx

Limited spots – see you in MTL! #REcon2026 #ReverseEngineering

13.01.2026 21:11 β€” πŸ‘ 8    πŸ” 3    πŸ’¬ 0    πŸ“Œ 2
Post image

NicolΓ² Altamura digs into decompiling CUDA kernels at RE//verse 2026! He takes a look at how GPU execution and NVIDIA’s IRs change the usual assumptions for decompilers and shows early work on a Binary Ninja PTX plugin aimed at real CUDA reversing. Don't miss out: shop.binary.ninja/collections/...

12.01.2026 18:45 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 0    πŸ“Œ 1
Preview
A Glimpse Into DexProtector | Romain Thomas This blog post provides a high-level overview of DexProtector's security features and their limitations

I reverse engineered DexProtector, the security solution protecting applications like Revolut and other banking apps.

From custom ELF loaders to vtable hooking, here is an insight into how these protections work and their limitations.

www.romainthomas.fr/post/26-01-d...

05.01.2026 06:11 β€” πŸ‘ 33    πŸ” 12    πŸ’¬ 0    πŸ“Œ 0

Excited to bring Deconstructing Rust Binaries to NorthSec in March! Chat with me here or at @decoderloop.com if you have questions about the training.

Take advantage of the early bird rate for the onsite option! Pricing is in CAD, take advantage of the exchange rate (:

nsec.io/training/202...

18.12.2025 22:13 β€” πŸ‘ 5    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Google Project Zero Make zeroday hard

We launched a redesigned Project Zero website today at projectzero.google !

To mark the occasion, we released some older posts that never quite made it out of drafts.

Enjoy!

17.12.2025 00:22 β€” πŸ‘ 18    πŸ” 4    πŸ’¬ 0    πŸ“Œ 1
Preview
It just keeps getting worse - Firefox to "evolve into a modern AI browser " Just like Google plan with Chrome, Mozilla aren't sitting still on expanding Firefox into something resembling a web browser but with more AI.

It just keeps getting worse - Firefox to "evolve into a modern AI browser "
#AI #Mozilla #Firefox

16.12.2025 19:28 β€” πŸ‘ 1555    πŸ” 480    πŸ’¬ 188    πŸ“Œ 1005
Preview
Exploiting Anno 1404 Exploiting Anno 1404

[New blog post] As part of an R&D project, @tomtombinary.bsky.social identified several critical vulnerabilities in the LAN multiplayer mode of the game Anno 1404 (released in 2009) πŸ”

Want to know more?
Read the full article on our blog πŸ‘‡
www.synacktiv.com/en/publicati...

16.12.2025 15:56 β€” πŸ‘ 3    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0

V8 now has a JS bytecode verifier!

IMO a good example for the benefits of the V8 Sandbox architecture:
- Hard: verify that bytecode is correct (no memory corruption)
- Easier: verify that it is secure (no out-of-sandbox memory corruption)

The sandbox basically separates correctness from security.

09.12.2025 10:00 β€” πŸ‘ 20    πŸ” 4    πŸ’¬ 1    πŸ“Œ 0

YARA fans, check out this great new @binary.ninja plugin!!!

08.12.2025 21:30 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
GrapheneOS bails on OVHcloud over France's privacy stance Project cites fears of state access as cloud sovereignty row deepens French cloud outfit OVHcloud took another hit this week after GrapheneOS, a mobile operating system, said it was ditching the company's servers over concerns about France's approach to digital privacy.…

GrapheneOS bails on OVHcloud over France's privacy stance

28.11.2025 15:50 β€” πŸ‘ 57    πŸ” 20    πŸ’¬ 5    πŸ“Œ 6
Post image

Binary Ninja 5.2, Io, is live and it's out of this world! binary.ninja/2025/11/13/b...

With some of our most requested features of all time including bitfield support, containers, hexagon, Ghidra import, and a huge upgrade to TTD capabilities, plus a ton more, make sure to check out the changelog!

13.11.2025 21:16 β€” πŸ‘ 9    πŸ” 3    πŸ’¬ 1    πŸ“Œ 0
A screenshot of DiaSymbolView inspecting combase.pdb

A screenshot of DiaSymbolView inspecting combase.pdb

I wanted to understand what information is available in .pdb files, so I made a tool for it πŸ”ŽπŸ›

Welcome DiaSymbolView - a debug symbol hierarchy and properties viewer based on MSDIA: github.com/diversenok/D...

10.11.2025 21:04 β€” πŸ‘ 10    πŸ” 4    πŸ’¬ 1    πŸ“Œ 0
Preview
Defeating KASLR by Doing Nothing at All Posted by Seth Jenkins, Project Zero Introduction I've recently been researching Pixel kernel exploitation and as part of this research I ...

New Blog Post: Seth Jenkins broke kASLR by doing … nothing 😩

googleprojectzero.blogspot.com/2025/11/defe...

03.11.2025 18:17 β€” πŸ‘ 10    πŸ” 5    πŸ’¬ 0    πŸ“Œ 0
Preview
WORKSHOP: Reversing a (not-so-) Simple Rust Loader // Cindy Xiao Rust can be challenging for even experienced reverse engineers. We will reverse a simple Rust malware loader found in the wild with obfuscated strings and a decoy payload, making it a good example for...

Thank you for your interest in Decoder Loop & #rustlang reverse engineering training so far!

This Friday, November 7th, join us at Ringzer0 COUNTERMEASURE, in Ottawa, Canada, where @cxiao.net will present the workshop "Reversing a (not-so-) Simple Rust Loader": ringzer0.training/countermeasu...

03.11.2025 15:30 β€” πŸ‘ 2    πŸ” 3    πŸ’¬ 1    πŸ“Œ 0
What the hell are we doing? Β· Addison Crump Homepage for Addison Crump

Must-read for fuzzing folks (read: tooling/algorithms/academia) by Addison Crump
addisoncrump.info/research/wha...

26.10.2025 03:16 β€” πŸ‘ 30    πŸ” 11    πŸ’¬ 1    πŸ“Œ 1
Preview
Future Architecture Technologies - POE2 and vMTE This blog post introduces two future technologies, Permission Overlay Extension version 2 (POE2) and Virtual Tagging Extension (vMTE).

POE2: community.arm.com/arm-communit...

26.10.2025 19:47 β€” πŸ‘ 4    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0

if u want a high quality curated source of news relevant to defenders, LOOK AT THIS SITE

25.10.2025 05:11 β€” πŸ‘ 6    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0

Impressive reverse engineering kung fu against widevine L3 by Felipe (x.com/_localo_) ! #hacklu
Cc @mrphrazer.bsky.social

23.10.2025 13:01 β€” πŸ‘ 3    πŸ” 2    πŸ’¬ 1    πŸ“Œ 0
Preview
U.S. government accuses former L3Harris cyber boss of stealing trade secrets | TechCrunch The U.S. Department of Justice accused Peter Williams, former general manager of L3Harris’ hacking division Trenchant, of stealing trade secrets and selling them to a buyer in Russia.

NEW: The U.S. govt accused Peter Williams, ex general manager of hacking tool maker L3Harris Trenchant, of stealing trade secrets and selling them to buyer in Russia.

As we reported earlier, Trenchant investigated a leak of internal tools this year. It's unclear if that investigation is related.

23.10.2025 15:47 β€” πŸ‘ 25    πŸ” 21    πŸ’¬ 1    πŸ“Œ 4
Preview
Exclusive: Apple alerts exploit developer that his iPhone was targeted with government spyware A developer at Trenchant, a leading Western spyware and zero-day maker, was suspected of leaking company tools and fired. Weeks later, Apple notified him that his personal iPhone was targeted with spy...

SCOOP: A man who worked on developing hacking and surveillance tools for defense contractor L3Harris Trenchant was notified by Apple that his iPhone was targeted with mercenary spyware.

The developer believes he was targeted after he was wrongly accused of leaking zero-days developed by Trenchant.

21.10.2025 14:54 β€” πŸ‘ 27    πŸ” 24    πŸ’¬ 2    πŸ“Œ 3
Preview
Reverse Engineering Denuvo in Hogwarts Legacy Talk at Navaja Negra 2025 This technical presentation explores the inner workings of Denuvo Anti-Tamper, one of the gaming industry’s most widely deployed DRM solutions. Through detailed reverse engin...

I held a talk about reverse engineering and bypassing Denuvo in Hogwarts Legacy at Navaja Negra

The recording and the slides are now online :D

momo5502.com/posts/2025-1...

11.10.2025 10:17 β€” πŸ‘ 4    πŸ” 3    πŸ’¬ 1    πŸ“Œ 1
BGGP6 flyer, a collage featuring old media formats arranged over a backdrop of a golf course

BGGP6 flyer, a collage featuring old media formats arranged over a backdrop of a golf course

Binary Golf Grand Prix 6 begins now!

#BGGP6 theme: "Recycle"

Challenge Announcement: binary.golf/6

18.10.2025 18:46 β€” πŸ‘ 34    πŸ” 22    πŸ’¬ 0    πŸ“Œ 2
Preview
Decoder Loop | Reverse Engineering Training Decoder Loop | Reverse Engineering Training

πŸ¦€ I am starting a training firm, @decoderloop.com, focused on providing Rust Reverse Engineering training! decoderloop.com

We hope to come to a conference near you next year. Stay notified on training dates: Follow us at @decoderloop.com, or join our mailing list: decoderloop.com/contact/#tra...

17.10.2025 14:09 β€” πŸ‘ 7    πŸ” 5    πŸ’¬ 1    πŸ“Œ 0

@ergrelet is following 20 prominent accounts