Josh Stroschein | The Cyber Yeti
@jstrosch.bsky.social
Reverse engineer at FLARE/Google | Pluralsight author | 😱 1M+ views on YT | 🎙️ Host of Behind the Binary podcast 👇
Pinned
OT Malware Analysis: FrostyGoop
This course will teach the basics of analyzing GoLang binaries and how to identify OT-specific threats using the FrostyGoop malware.
buff.ly
🚀 Ready to learn malware analysis and operational technology (OT)? My latest Pluralsight course has launched will walk you through OT protocol basics using modbus and the FrostyGoop malware as a case study 👇
https://buff.ly/4gJhlb5
As a bonus, we'll also talk about reversing GoLang binaries!
https://buff.ly/4gJhlb5
As a bonus, we'll also talk about reversing GoLang binaries!
Is the 9-5 a thing of the past? 💀 Dhillon Kannabhiran (HITB) says the "hacker ethos" is replacing the corporate ladder. From on-demand bug hunting to working across time zones, the rules of the game have changed.
podcasts.apple.com/us/podcast/e...
podcasts.apple.com/us/podcast/e...
January 21, 2026 at 6:01 PM
Is the 9-5 a thing of the past? 💀 Dhillon Kannabhiran (HITB) says the "hacker ethos" is replacing the corporate ladder. From on-demand bug hunting to working across time zones, the rules of the game have changed.
podcasts.apple.com/us/podcast/e...
podcasts.apple.com/us/podcast/e...
🔥 The next episode of Behind the Binary is live! Dhillon Kannabhiran joins us to talk the cutting edge of tech and creativity, agentic systems and exploit dev, a little web3 and the intersection of math and music. Plus we explore the origins of Hack-in-the-Box!
🎧 open.spotify.com/episode/08ih...
🎧 open.spotify.com/episode/08ih...
EP21 - From HITB Origins to Agentic AI: Web3, Music & The Future of Hacking with Dhillon Kannabhiran
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
January 14, 2026 at 7:01 PM
🔥 The next episode of Behind the Binary is live! Dhillon Kannabhiran joins us to talk the cutting edge of tech and creativity, agentic systems and exploit dev, a little web3 and the intersection of math and music. Plus we explore the origins of Hack-in-the-Box!
🎧 open.spotify.com/episode/08ih...
🎧 open.spotify.com/episode/08ih...
📣 Happy New Year everyone! If you're looking to get some hands-on malware/reversing training to kick off the year, now is your chance! Check out this virtual training we'll be offering in March with RingZer0 👇
ringzer0.training/countermeasu...
ringzer0.training/countermeasu...
The FLARE Guide to Windows Internals and Advanced Reversing
Developed by the FLARE team at Google Cloud Security, this immersive six-day virtual training provides a comprehensive deep dive into the complex world of modern Windows malware.
ringzer0.training
January 8, 2026 at 6:04 PM
📣 Happy New Year everyone! If you're looking to get some hands-on malware/reversing training to kick off the year, now is your chance! Check out this virtual training we'll be offering in March with RingZer0 👇
ringzer0.training/countermeasu...
ringzer0.training/countermeasu...
If you're interested in learning more about time-travel debugging (TTD), consider joining my upcoming webinar with VirusTotal. You can register here:
www.brighttalk.com/webcast/7451...
Going to cover some basics from my recent blog :)
cloud.google.com/blog/topics/...
www.brighttalk.com/webcast/7451...
Going to cover some basics from my recent blog :)
cloud.google.com/blog/topics/...
Static Analysis at Scale: Unpacking the Malware Ecosystem
Modern threats utilize highly complex and obfuscated delivery chains to conceal their final payloads and evade detection. This tactical webinar, presented by Google Cloud VirusTotal Security Engineer…
www.brighttalk.com
December 9, 2025 at 6:01 PM
If you're interested in learning more about time-travel debugging (TTD), consider joining my upcoming webinar with VirusTotal. You can register here:
www.brighttalk.com/webcast/7451...
Going to cover some basics from my recent blog :)
cloud.google.com/blog/topics/...
www.brighttalk.com/webcast/7451...
Going to cover some basics from my recent blog :)
cloud.google.com/blog/topics/...
🎙️ In the latest episode of Behind the Binary, Nino Isakovic joins us to talk about the art of deconstructing problems, building a robust RE toolkit, and his work on deobfuscating ScatterBrain!
👉 open.spotify.com/episode/2Iyy...
👉 open.spotify.com/episode/2Iyy...
EP19 The Art of Deconstructing Problems: Tools, Tactics, and the ScatterBrain Obfuscator with Nino Isakovic
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
November 19, 2025 at 6:00 PM
🎙️ In the latest episode of Behind the Binary, Nino Isakovic joins us to talk about the art of deconstructing problems, building a robust RE toolkit, and his work on deobfuscating ScatterBrain!
👉 open.spotify.com/episode/2Iyy...
👉 open.spotify.com/episode/2Iyy...
⌛ It's been a while since I published a "real" blog, hope you enjoy it!
👉 cloud.google.com/blog/topics/...
This was part of the material we delivered at our DEFCON33 workshop too :)
👉 cloud.google.com/blog/topics/...
This was part of the material we delivered at our DEFCON33 workshop too :)
Time Travel Triage: An Introduction to Time Travel Debugging using a .NET Process Hollowing Case Study | Google Cloud Blog
The basics of WinDbg and Time Travel Debugging necessary to start incorporating it into your analysis.
cloud.google.com
November 13, 2025 at 6:00 PM
⌛ It's been a while since I published a "real" blog, hope you enjoy it!
👉 cloud.google.com/blog/topics/...
This was part of the material we delivered at our DEFCON33 workshop too :)
👉 cloud.google.com/blog/topics/...
This was part of the material we delivered at our DEFCON33 workshop too :)
🎙️ The next episode of Behind the Binary is here! In this episode we wrap up FLARE-On 12. We chat with several challenge authors (including the final challenge), discuss some creative cheating, and look at the impact of AI on the CtF 👇
open.spotify.com/episode/4jPP...
open.spotify.com/episode/4jPP...
EP18 10,000 DLLs and Too Much Math - Wrapping Up FLARE-On 12 with the FLARE Team
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
November 5, 2025 at 6:00 PM
🎙️ The next episode of Behind the Binary is here! In this episode we wrap up FLARE-On 12. We chat with several challenge authors (including the final challenge), discuss some creative cheating, and look at the impact of AI on the CtF 👇
open.spotify.com/episode/4jPP...
open.spotify.com/episode/4jPP...
🎙️ Ever wonder what it takes to secure a massive event like Black Hat? 🤔
Mark Overholser from Corelight joins us to pull back the curtain on how the Black Hat Network Operations Center (NOC) is built, monitored, and the craziest things that have shown up!
Spotify: open.spotify.com/episode/2F4x...
Mark Overholser from Corelight joins us to pull back the curtain on how the Black Hat Network Operations Center (NOC) is built, monitored, and the craziest things that have shown up!
Spotify: open.spotify.com/episode/2F4x...
EP17 What Lurks Beneath: Building a Robust Network at Black Hat with Mark Overholser
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
October 22, 2025 at 5:01 PM
🎙️ Ever wonder what it takes to secure a massive event like Black Hat? 🤔
Mark Overholser from Corelight joins us to pull back the curtain on how the Black Hat Network Operations Center (NOC) is built, monitored, and the craziest things that have shown up!
Spotify: open.spotify.com/episode/2F4x...
Mark Overholser from Corelight joins us to pull back the curtain on how the Black Hat Network Operations Center (NOC) is built, monitored, and the craziest things that have shown up!
Spotify: open.spotify.com/episode/2F4x...
👨🦯 Yikes, hard to believe the first video I uploaded was 14 years ago... I shared some tips on using sqlmap w/ burpsuie in BackTrack5!
www.youtube.com/watch?v=0buz...
Most of my early content was for course work, I never started making videos with any intent of growing a channel.
www.youtube.com/watch?v=0buz...
Most of my early content was for course work, I never started making videos with any intent of growing a channel.
October 21, 2025 at 3:03 PM
👨🦯 Yikes, hard to believe the first video I uploaded was 14 years ago... I shared some tips on using sqlmap w/ burpsuie in BackTrack5!
www.youtube.com/watch?v=0buz...
Most of my early content was for course work, I never started making videos with any intent of growing a channel.
www.youtube.com/watch?v=0buz...
Most of my early content was for course work, I never started making videos with any intent of growing a channel.
📣 Live stream tomorrow with Hahna Kane, join us at 3pm CDT/ 4pm EDT on YouTube 👇
youtube.com/live/HG_JsFq...
We'll be talking machine learning, data sciences and evolutions in AI - plus some demos!
youtube.com/live/HG_JsFq...
We'll be talking machine learning, data sciences and evolutions in AI - plus some demos!
Practical Applications in Machine Learning with Hahna Kane Latonick
Hahna Kane Latonick joins the live stream to talk about machine learning, reverse engineering, program analysis and more! We'll explore practical approaches ...
youtube.com
October 19, 2025 at 5:00 PM
📣 Live stream tomorrow with Hahna Kane, join us at 3pm CDT/ 4pm EDT on YouTube 👇
youtube.com/live/HG_JsFq...
We'll be talking machine learning, data sciences and evolutions in AI - plus some demos!
youtube.com/live/HG_JsFq...
We'll be talking machine learning, data sciences and evolutions in AI - plus some demos!
🚀 Check out the latest features and enhancements to the FLARE-VM 👇
security.googlecloudcommunity.com/community-bl...
security.googlecloudcommunity.com/community-bl...
Discord - Group Chat That’s All Fun & Games
Discord is great for playing games and chilling with friends, or even building a worldwide community. Customize your own space to talk, play, and hang out.
discord.com
October 9, 2025 at 7:01 PM
🚀 Check out the latest features and enhancements to the FLARE-VM 👇
security.googlecloudcommunity.com/community-bl...
security.googlecloudcommunity.com/community-bl...
🔥 Live stream is starting in under an hour - join us on YouTube to learn about the latest Suricata releases on how they fixed several high-severity CVEs!
youtube.com/live/ID9q7E4...
youtube.com/live/ID9q7E4...
LIVE: Suricata 8.0.1 & 7.0.12 Security Release: Fixing High-Severity CVEs with the Core Team
Join us live with the Suricata core team members as we break down the crucial security updates in the newly released Suricata 8.0.1 and 7.0.12. These are imp...
youtube.com
October 9, 2025 at 4:06 PM
🔥 Live stream is starting in under an hour - join us on YouTube to learn about the latest Suricata releases on how they fixed several high-severity CVEs!
youtube.com/live/ID9q7E4...
youtube.com/live/ID9q7E4...
🔥 Live stream this Thursday at 12pm CDT! Peter Manev and Lukas Sismis are here to talk about the latest Suricata releases, which fix several high severity CVEs...
Join us on YouTube - youtube.com/live/ID9q7E4...
Join us on YouTube - youtube.com/live/ID9q7E4...
LIVE: Suricata 8.0.1 & 7.0.12 Security Release: Fixing High-Severity CVEs with the Core Team
Join us live with the Suricata core team members as we break down the crucial security updates in the newly released Suricata 8.0.1 and 7.0.12. These are imp...
youtube.com
October 7, 2025 at 3:00 PM
🔥 Live stream this Thursday at 12pm CDT! Peter Manev and Lukas Sismis are here to talk about the latest Suricata releases, which fix several high severity CVEs...
Join us on YouTube - youtube.com/live/ID9q7E4...
Join us on YouTube - youtube.com/live/ID9q7E4...
🔥 The next episode of Behind the Binary is here! We're joined by renowned security researcher Hahna Kane Latonick for a deep dive into the powerful world where reverse engineering meets data science.
🎧 open.spotify.com/episode/2CFB...
🎧 open.spotify.com/episode/2CFB...
EP16 The Machine Learning Revolution in Reverse Engineering with Hahna Kane Latonick
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
October 2, 2025 at 4:02 PM
🔥 The next episode of Behind the Binary is here! We're joined by renowned security researcher Hahna Kane Latonick for a deep dive into the powerful world where reverse engineering meets data science.
🎧 open.spotify.com/episode/2CFB...
🎧 open.spotify.com/episode/2CFB...
🥷 FLARE-On 12 starts today - prepare yourself with this episode of Behind the Binary 👇
open.spotify.com/episode/4eS4...
open.spotify.com/episode/4eS4...
EP15 Getting Ready for FLARE-On 12 - An Inside Look at the Reverse Engineering Gauntlet
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
September 26, 2025 at 7:02 PM
🥷 FLARE-On 12 starts today - prepare yourself with this episode of Behind the Binary 👇
open.spotify.com/episode/4eS4...
open.spotify.com/episode/4eS4...
🏗️ More assembly basics - in this short, we'll cover how to create a basic FOR loop in assembly!
🎯 youtube.com/shorts/eddBB...
🎯 youtube.com/shorts/eddBB...
🏗️ Assembly Shorts - Creating a FOR Loop
In this short, we'll cover how to create a basic FOR loop in assembly.
To see how I created the printf wrapper functions: https://youtu.be/NQjJLpKkH28
Join this channel to get access to…
youtube.com
September 26, 2025 at 5:15 PM
🏗️ More assembly basics - in this short, we'll cover how to create a basic FOR loop in assembly!
🎯 youtube.com/shorts/eddBB...
🎯 youtube.com/shorts/eddBB...
🏗️ Here is a quick look at how I link object files from NASM and C to create the basic wrapper functions for printf in my recent assembly shorts:
youtu.be/NQjJLpKkH28
youtu.be/NQjJLpKkH28
Linking Object Files from C and NASM in Windows
In this video, we tackle a common challenge: linking multiple object files from both NASM assembly and C on Windows.
You'll learn how to create C wrapper functions to bridge the gap and successfully…
youtu.be
September 25, 2025 at 5:02 PM
🏗️ Here is a quick look at how I link object files from NASM and C to create the basic wrapper functions for printf in my recent assembly shorts:
youtu.be/NQjJLpKkH28
youtu.be/NQjJLpKkH28
🎙️ Behind the Binary: Did you miss our latest episode on crypto heists and Web3? We dove into the "Wild West" of Web3 and decentralized finance, where thefts and hacks are now more common than in traditional finance.
Get caught-up 👉 open.spotify.com/episode/4MMp...
Get caught-up 👉 open.spotify.com/episode/4MMp...
EP14 Web3's Dark Side: Unmasking the New Age of Financial Crime
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
September 24, 2025 at 5:06 PM
🎙️ Behind the Binary: Did you miss our latest episode on crypto heists and Web3? We dove into the "Wild West" of Web3 and decentralized finance, where thefts and hacks are now more common than in traditional finance.
Get caught-up 👉 open.spotify.com/episode/4MMp...
Get caught-up 👉 open.spotify.com/episode/4MMp...
🛠️ Part of gaining proficiency with IDA Pro is understanding how to interpret its output. In this short, we'll explore the offset keyword and how IDA uses it to display addresses and offsets.
youtube.com/shorts/MSsmA...
youtube.com/shorts/MSsmA...
🏃♂️ IDA Basics - What are Offsets?
Part of gaining proficiency with IDA is understanding how to interpret it's output. In this short, we'll explore the offset keyword and how IDA uses it to display addresses and offsets.
Join this…
youtube.com
September 18, 2025 at 5:15 PM
🛠️ Part of gaining proficiency with IDA Pro is understanding how to interpret its output. In this short, we'll explore the offset keyword and how IDA uses it to display addresses and offsets.
youtube.com/shorts/MSsmA...
youtube.com/shorts/MSsmA...
📣 Apologies, folks! Today's live stream with Hahna Kane has been postponed. We're working on rescheduling for October and will share the new date soon. Stay tuned!
September 17, 2025 at 7:01 PM
📣 Apologies, folks! Today's live stream with Hahna Kane has been postponed. We're working on rescheduling for October and will share the new date soon. Stay tuned!
The next episode of Behind the Binary is here! Getting ready for FLARE-On 12? Not sure what it even is? This episode is for you! We’re joined by FLARE-On host and challenge author Nick Harbour and challenge author Blas Kojusner to give you an inside look!
open.spotify.com/episode/4eS4...
open.spotify.com/episode/4eS4...
EP15 Getting Ready for FLARE-On 12 - An Inside Look at the Reverse Engineering Gauntlet
Behind the Binary by Google Cloud Security · Episode
open.spotify.com
September 17, 2025 at 5:02 PM
The next episode of Behind the Binary is here! Getting ready for FLARE-On 12? Not sure what it even is? This episode is for you! We’re joined by FLARE-On host and challenge author Nick Harbour and challenge author Blas Kojusner to give you an inside look!
open.spotify.com/episode/4eS4...
open.spotify.com/episode/4eS4...
🚀 Live stream this week with the one and only Hahna Kane Latonick! We'll be chatting practical applications of machine learning and demoing some LLM-based reversing with Ghidra and MCPs!
Join us on YouTube 👉 youtube.com/live/_SIGeLA...
Join us on YouTube 👉 youtube.com/live/_SIGeLA...
Practical Applications in Machine Learning with Hahna Kane Latonick
Hahna Kane Latonick joins the live stream to talk about machine learning, reverse engineering, program analysis and more! We'll explore practical approaches ...
youtube.com
September 15, 2025 at 7:02 PM
🚀 Live stream this week with the one and only Hahna Kane Latonick! We'll be chatting practical applications of machine learning and demoing some LLM-based reversing with Ghidra and MCPs!
Join us on YouTube 👉 youtube.com/live/_SIGeLA...
Join us on YouTube 👉 youtube.com/live/_SIGeLA...
🚀 Miss the stream with Xusheng? You can learn all about Binary Ninja's time-travel debugging support plus some not yet released features 👇
youtube.com/live/-eVyYB8...
youtube.com/live/-eVyYB8...
Leveraging WinDbg in Binary Ninja - TTD and the WinDbg Backend
Xusheng Li, software engineer at Vector 35, joins the stream to show how to maximize the WinDbg backend directly through Binary Ninja. We'll also take a look...
youtube.com
September 15, 2025 at 5:00 PM
🚀 Miss the stream with Xusheng? You can learn all about Binary Ninja's time-travel debugging support plus some not yet released features 👇
youtube.com/live/-eVyYB8...
youtube.com/live/-eVyYB8...