BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//cfp.recon.cx//recon-2026//talk//YACFKE
BEGIN:VTIMEZONE
TZID:EST
BEGIN:STANDARD
DTSTART:20001029T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10;UNTIL=20061029T070000Z
TZNAME:EST
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
END:STANDARD
BEGIN:STANDARD
DTSTART:20071104T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=11
TZNAME:EST
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000402T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4;UNTIL=20060402T080000Z
TZNAME:EDT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
END:DAYLIGHT
BEGIN:DAYLIGHT
DTSTART:20070311T030000
RRULE:FREQ=YEARLY;BYDAY=2SU;BYMONTH=3
TZNAME:EDT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-recon-2026-YACFKE@cfp.recon.cx
DTSTART;TZID=EST:20260619T130000
DTEND;TZID=EST:20260619T160000
DESCRIPTION:One of the first steps taken during the reverse engineering pro
 cess is to recover as much context as possible from a given binary\, inclu
 ding symbols\, function signatures\, classes and structures associated wit
 h statically linked code. This is especially important for modern compiler
 s and linkers that embed a plethora of boilerplate that you don't want to 
 spend time reverse engineering. Throughout this workshop we will explore r
 ecovering this information using multiple open source tools in Binary Ninj
 a. Our target will be a real-world malware sample written in C++ that is u
 sed to terminate EDR and antivirus technologies. The sample contains multi
 ple components\, including user-mode and kernel-mode binaries that require
  symbol and type information recovery for accurate analysis.
DTSTAMP:20260612T172556Z
LOCATION:Soprano B
SUMMARY:C++ Symbol and Type Recovery in Binary Ninja - Joshua Reynolds
URL:https://cfp.recon.cx/recon-2026/talk/YACFKE/
END:VEVENT
END:VCALENDAR