frontpage.

This article is a deep technical dive into custom macOS malware development, centered on building a self-mutating loader using Mach-O internals and native Darwin APIs. It details the architecture of a polymorphic engine divided into two phases: a parent process responsible for payload mutation and re-encryption, and a mutant process that executes the evolved code. The piece explores techniques such as fileless execution, runtime mutation, in-memory encryption, and command-and-control via dead-drop, all implemented entirely through native APIs and low-level Mach-O manipulation.

https://0xf00sec.github.io/0x22

Show HN: Airut – Sandboxed Claude Code over Email and Slack

Phloem – Local-first AI memory with causal graphs (MCP server, zero network)

Show HN: Ipinsights.io – Free IP threat intelligence with API

The Algebra of Resistance

A Galaxy Composed Almost of Dark Matter Has Been Confirmed

Ancient bacteria strain discovered is resistant to some modern antibiotics

The Longevity Scam

Payrolls to Prompts: Firm-Level Evidence on the Substitution of Labor for AI

Show HN: InkSight – An open-source, LLM-powered e-ink display for "slow info"

Show HN: I stopped treating my local model as a tool and built it a life cycle

Canadian trans shooter's disturbing ChatGPT messages alarmed employees

How to optimize the CD command to go back multiple folders at once

Huge study finds a link between cannabis use in teens and psychosis later

KIP-1150 Diskless Topics in Apache Kafka is a big deal

Deciduous – A code archaeology, living memory, and LLM programming helper tool

How the Golden Gate Bridge Works (Animagraffs Video)

Small CSV Cleaner Tool

Deciduous – A code archaeology, living memory, and LLM programming helper tool

LLMs became dangerously good for cybersecurity

Your pricing sucks (and your billing system is why)

Women's pain lasts longer than men, new study has clues why

Show HN: Giving AI agents access to Kagi's search APIs

Supreme Court's Tariff Ruling: Next Steps, Potential Refunds, Business Guidance

Ask HN: Why don't software developers make medical devices?

Keystroke dynamics: how your fingers are snitching on you

Amazon: AI-assisted hacker breached 600 FortiGate firewalls in 5 weeks

Evidence of Learned Look-Ahead in a Chess-Playing Neural Network

Keenadu – A Multifaceted Android Malware

MVS-TK5 Update 5 released

ZeroclawGPT: Karpathy's microGPT in Rust, 4580x faster

macOS Malware Development II

Show HN: Airut – Sandboxed Claude Code over Email and Slack

Phloem – Local-first AI memory with causal graphs (MCP server, zero network)

Show HN: Ipinsights.io – Free IP threat intelligence with API

The Algebra of Resistance

A Galaxy Composed Almost of Dark Matter Has Been Confirmed

Ancient bacteria strain discovered is resistant to some modern antibiotics

The Longevity Scam

Payrolls to Prompts: Firm-Level Evidence on the Substitution of Labor for AI

Show HN: InkSight – An open-source, LLM-powered e-ink display for "slow info"

Show HN: I stopped treating my local model as a tool and built it a life cycle

Canadian trans shooter's disturbing ChatGPT messages alarmed employees

How to optimize the CD command to go back multiple folders at once

Huge study finds a link between cannabis use in teens and psychosis later

KIP-1150 Diskless Topics in Apache Kafka is a big deal

Deciduous – A code archaeology, living memory, and LLM programming helper tool

How the Golden Gate Bridge Works (Animagraffs Video)

Small CSV Cleaner Tool

Deciduous – A code archaeology, living memory, and LLM programming helper tool

LLMs became dangerously good for cybersecurity

Your pricing sucks (and your billing system is why)

Women's pain lasts longer than men, new study has clues why

Show HN: Giving AI agents access to Kagi's search APIs

Supreme Court's Tariff Ruling: Next Steps, Potential Refunds, Business Guidance

Ask HN: Why don't software developers make medical devices?

Keystroke dynamics: how your fingers are snitching on you

Amazon: AI-assisted hacker breached 600 FortiGate firewalls in 5 weeks

Evidence of Learned Look-Ahead in a Chess-Playing Neural Network

Keenadu – A Multifaceted Android Malware

MVS-TK5 Update 5 released

ZeroclawGPT: Karpathy's microGPT in Rust, 4580x faster