frontpage.

This article is a deep technical dive into custom macOS malware development, centered on building a self-mutating loader using Mach-O internals and native Darwin APIs. It details the architecture of a polymorphic engine divided into two phases: a parent process responsible for payload mutation and re-encryption, and a mutant process that executes the evolved code. The piece explores techniques such as fileless execution, runtime mutation, in-memory encryption, and command-and-control via dead-drop, all implemented entirely through native APIs and low-level Mach-O manipulation.

https://0xf00sec.github.io/0x22

Your Token Proves Who You Are, Not What You Own

Web API Changelog – February 2026

Russia fines Google 22.8M rubles for promoting VPNs on the Play Store

The Little Red Dot

Building Technology to Drive AI Governance

NASA Artemis 2 Launch Delay

Coding Agents and the Inevitable AI Bubble with Eric Anderson [audio]

Show HN: Intelligence Disruption Index – Is AI replacing human work?

Show HN: Morsel – an open-source, web-based visual Modelica editor

Show HN: App to check – Can this model run on my Mac mini?

I made this new game

Vera Rubin – Extreme Co-Design: An Evolution from Grace Blackwell Oberon

'Incoherent': Hegseth's Anthropic ultimatum confounds AI policymakers

New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises

Specs Should Be Equations, Not Essays

An official VS Code extension for FastAPI

30k Peptides and a GPU That Wasn't Trying Hard Enough

MLS's calendar flip is coming. Clubs are planning how to exploit it

anthropics/skills: Public repository for Agent Skills

Happy Map

Show HN: MongoClaw, A mutation runtime for MongoDB with write-time agent safety

Ibex – Typed DataFrame DSL

Stripe closed my account – no notice – my LLC was registered using Stripe Atlas

Show HN: Quantumopt – GNN-based quantum circuit compiler (34% gate reduction)

AI writing makes me want to throw up a little bit in my mouth

Stripe closed my account – no notice – my LLC was registered using Stripe Atlas

One-Instruction Set Computer

Prompt Repetition Improves Non-Reasoning LLMs

France honors last newspaper hawker in Paris with knighthood

Show HN: Octrafic – Natural language API testing CLI

macOS Malware Development II

Your Token Proves Who You Are, Not What You Own

Web API Changelog – February 2026

Russia fines Google 22.8M rubles for promoting VPNs on the Play Store

The Little Red Dot

Building Technology to Drive AI Governance

NASA Artemis 2 Launch Delay

Coding Agents and the Inevitable AI Bubble with Eric Anderson [audio]

Show HN: Intelligence Disruption Index – Is AI replacing human work?

Show HN: Morsel – an open-source, web-based visual Modelica editor

Show HN: App to check – Can this model run on my Mac mini?

I made this new game

Vera Rubin – Extreme Co-Design: An Evolution from Grace Blackwell Oberon

'Incoherent': Hegseth's Anthropic ultimatum confounds AI policymakers

New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises

Specs Should Be Equations, Not Essays

An official VS Code extension for FastAPI

30k Peptides and a GPU That Wasn't Trying Hard Enough

MLS's calendar flip is coming. Clubs are planning how to exploit it

anthropics/skills: Public repository for Agent Skills

Happy Map

Show HN: MongoClaw, A mutation runtime for MongoDB with write-time agent safety

Ibex – Typed DataFrame DSL

Stripe closed my account – no notice – my LLC was registered using Stripe Atlas

Show HN: Quantumopt – GNN-based quantum circuit compiler (34% gate reduction)

AI writing makes me want to throw up a little bit in my mouth

Stripe closed my account – no notice – my LLC was registered using Stripe Atlas

One-Instruction Set Computer

Prompt Repetition Improves Non-Reasoning LLMs

France honors last newspaper hawker in Paris with knighthood

Show HN: Octrafic – Natural language API testing CLI