NAME
About me
ABOUT

Hi there, I am Thomas Barabosch. I work in cyber security and like the parts where careful technical analysis turns into something useful: better detections, clearer investigations, stronger tooling, and a deeper understanding of how systems fail.
My main interests are threat intelligence, incident response, malware analysis, reverse engineering, detection engineering, vulnerability research, and AI-enabled security workflows. I enjoy moving between low-level details and operational questions: from disassemblers, binaries, firmware, and exploit primitives to actor tradecraft, hunting ideas, response processes, and analyst tooling.
I have built and contributed to open-source security projects, including FACT, cwe_checker, and ForgeArmory. I have also published scientific papers, presented at conferences, submitted patches and vulnerability reports to BSD projects and other software vendors, and served for many years on the programme committee of Botconf.
This blog is where I write down technical material that should last longer than a short post elsewhere: malware analysis notes, reverse-engineering write-ups, tool notes, security research, book recommendations, and the occasional personal opinion about cyber security.
The posts here are my own and reflect my personal views, not those of any past, current, or future employer.
You can find my projects on GitHub and my professional profile on LinkedIn.