The best reverse engineering YouTube channels in 2026

Reverse engineering is the one corner of security where the YouTube quality gap is brutal. Most "learn RE" content is someone narrating a CrackMe they already solved, skipping the part where you actually get stuck. The interesting part of RE is the getting stuck. The two hours staring at a function that does nothing obvious, the moment the calling convention finally clicks, the realization that the compiler inlined the thing you were looking for.

We run a directory of these channels, so we watch a lot of them. Here are the ones that respect how the work actually feels, ranked roughly by how much they'll move your skill needle. One thing up front: RE is not one skill. Binary exploitation, malware unpacking, and hardware firmware analysis share tools and share a mindset, but a great firmware channel won't teach you heap exploitation. Sort by your target, not by subscriber count.

For the wider picture, this is part of the full roundup of security channels.

The core picks for binary RE

LiveOverflow is the obvious number one and it earns it. He more or less defined the modern format for teaching binary exploitation: the "let's figure it out live" approach, where you watch someone reason through an unfamiliar binary instead of being handed the answer. The Binary Hacking and pwn series are still the best on-ramp to memory corruption that exists for free. What he nails is the meta-skill, how to think when you don't know the answer yet. Caveat: the back catalog is older now, some tooling has moved on, and the pace assumes you'll pause and replicate. If you binge it like Netflix you'll learn nothing.

Low Level (formerly Low Level Learning) is the channel I send people to when they can read disassembly but don't understand it. He explains the systems-level "why": what the compiler actually emits, why your C turns into the assembly it does, what a calling convention is for, how the stack frame is laid out. This is the foundation that makes RE stop feeling like guesswork. Who it's for: anyone who can follow x86-64 mechanically but couldn't explain why the prologue exists. Honest caveat, it skews more "systems programming" than pure RE, so you're assembling the RE skill from adjacent parts rather than getting it handed to you.

Guided Hacking is the unglamorous practical on-ramp, and game hacking is a genuinely underrated way to learn RE. You want a target that's interesting, that fights back a little, and that gives you instant visual feedback when you find the right pointer. Games are exactly that. The channel drills the fundamentals that transfer everywhere: memory layout, multi-level pointers, attaching a debugger, finding and patching values, dealing with anti-cheat. Caveat, the surrounding scene has a lot of skid energy and the production can feel scattered. Ignore the noise, the core RE content is solid.

Malware, firmware, and the specialists

OALabs is where you go once you want to reverse real malware instead of CrackMes. This is practical, tooling-forward RE: actual unpacking of packed and obfuscated samples, IDA and x64dbg workflows shown at the level of an actual analyst, Python scripting against the IDA API, config extraction. What they nail is the workflow, the unsexy decisions about when to step, when to dump, when to script. For who: aspiring or working malware analysts who already know their way around a disassembler. Caveat, it is not beginner content. If you don't know what an import address table is, start elsewhere and come back.

MalwareAnalysisForHedgehogs is sample-driven and refreshingly focused. Pick a real piece of malware, walk the unpacking, write the signature, ship the YARA rule. It is short, practical, and very high signal per minute, which makes it a great complement to OALabs' deeper dives. The honest caveat is just scope: it's tightly malware-analysis flavored, so it pairs naturally with the malware analysis roundup rather than teaching you exploitation.

cybercdh is Colin Hardy, and his thing is making threat and malware breakdowns approachable without dumbing them down. He's good at the narrative layer, why a sample matters, how the pieces fit, what the analyst is actually trying to learn, which is exactly what most RE content forgets to explain. For who: people who find raw disassembly walkthroughs intimidating and want the story alongside the bytes. Caveat, the upload cadence is irregular, so treat it as a back catalog to mine rather than a weekly subscription.

stacksmashing is the one to follow for hardware and embedded RE, and it's a different sport. Firmware extraction, glitching attacks, dumping flash, reversing the code that runs on the metal instead of on your laptop. The content is genuinely excellent and goes places software RE never touches. What he nails is making hardware attacks feel achievable instead of mystical. Caveat, the barrier to following along is real: you need actual hardware on the bench, a logic analyzer, sometimes a glitcher. Watching is educational, replicating is an investment. Pair it with the hardware hacking roundup if that's your direction.

If English isn't your first language

The English scene dominates, but it isn't the only good one. Mente Binária is the reference for Portuguese-language RE, a real community as much as a channel, with content that goes properly deep on binary analysis and security internals. If Portuguese is your language, you're not settling by watching it, you're getting first-rate material in your own head's native tongue, which for RE matters more than people admit. Caveat, obvious one, the audience is Portuguese-speaking, so it's a strong recommendation for that crowd specifically.

A closing reality check. None of these channels will make you a reverse engineer. Watching someone else defeat a packer is entertainment, not skill. The skill comes from the part nobody films: you, a stripped binary, no symbols, a decompiler producing garbage, and the stubbornness to sit there until it makes sense. Use these channels to learn the tools and steal the workflow. Then close the tab and go get stuck on something yourself. That's the whole job.