Reverse engineering analyzes compiled code to understand its functionality — identifying malware capabilities, vulnerabilities in closed-source software, or protocol specifications.
Tools: Ghidra (free, NSA-developed), IDA Pro (commercial), Radare2 (open source). Malware analysts reverse engineer malware to understand C2 protocols. Fuzzing and RE are complementary vulnerability research techniques.