How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to distribute credential‑stealing payloads.

A curated collection of offensive, defensive, and automation tools developed for cybersecurity research, penetration testing, and threat analysis. This repository serves as a central hub for my custom ...

Warning: this code is provided on a best effort basis and is not in any way officially supported or sanctioned by Cohesity. The code is intentionally kept simple to retain value as example code. The ...

In the last year, I have had to install Windows on a couple of devices, some due to work-related commitments, and others purely for experimental purposes. After the first few installs, I knew I had to ...

The attack consists of a NexShield malicious browser extension, a social engineering technique to crash the browser, and a Python-based RAT.

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations. Boto Cor-de-Rosa campaign tracks delivery success.

A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the ...

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.