Xusheng Li

About

I am a software developer at Vector 35 Inc., where I am one of the core developers of Binary Ninja and lead the development of its debugger, including its Time-Travel Debugging (TTD) integration. My research interests span reverse engineering, malware analysis, vulnerability research, and code obfuscation. I am also an independent security researcher with multiple CVEs to my name (CVE-2025-13453, CVE-2025-13454, CVE-2025-13455).

I have spoken at RE//verse (2026) and CODEGATE (2025), guested on the Behind the Binary podcast by Google Cloud Security, and have been invited to present on various technical platforms. I have published in peer-reviewed journals including the Journal of Computer Security and IEEE TIFS, co-authored a book on assembly language and reverse engineering, and created an introductory Binary Ninja course on Open Security Training 2 (OST2). I am a peer reviewer for CCS, ESORICS, DSN, JCS, and other cybersecurity venues. I am a reviewer of Paged Out! magazine, and the administrator and reviewer of crackmes.one. I took 1st place in the Grand Reverse Engineering Challenge, completed the Flare-On reverse engineering challenge four consecutive times (2022–2025), and am a member of the Shellphish CTF team. I also contribute to widely-used open-source security tooling, including Google FLARE’s capa (120k+ annual downloads) and CodeLLDB (8.4M+ installs).