frontpage.

This article is a deep technical dive into custom macOS malware development, centered on building a self-mutating loader using Mach-O internals and native Darwin APIs. It details the architecture of a polymorphic engine divided into two phases: a parent process responsible for payload mutation and re-encryption, and a mutant process that executes the evolved code. The piece explores techniques such as fileless execution, runtime mutation, in-memory encryption, and command-and-control via dead-drop, all implemented entirely through native APIs and low-level Mach-O manipulation.

https://0xf00sec.github.io/0x22

LMF – LLM Markup Format

What nearly broke you in your first year as CTO?

Zipp 2001 Restoration

Black Hat USA 2025 – Breaking Control Flow Integrity by Abusing Modern C++ [video]

As US missiles leave South Korea, the Philippines asks: are we next?

Show HN: AIWatermarkDetector: Detect AI Watermarks in text or code

Whitehall can't cost digital ID until it decides how to build it

Meta Acquires Moltbook

The Anthropic Institute

The return-to-the-office trend backfires

Tensorlake

Now I have a clear picture. Let me understand the issue

I Need a Partner

Ask HN: Which EU country would you recommend for setting up a startup?

NextCell – a portable spreadsheet editor inspired by Excel 97

Show HN: TUI for SVN

Agentic Risks

Ask HN: Why does a black line appear on HN sometimes?

Ask HN: How do you find joy in a world full of depressing news?

Gpsjam GPS/GNSS Interference Map

The Quantum Curtain

Stacksort

Mesh – remote mobile forensics and network monitoring

MacBook Neo Review: Better Than You Think

Encode/httpx: Closing off access

A Kubernetes operator that orchestrates AI coding agents

AI Agent Hacks McKinsey

Movies I Highly Recommend

Richard Feynman's story illustrating the problem of p-hacking

Glanceway – Collect RSS and custom plugin data in your macOS menu bar