> [!info] Useful links to InfoSec & development resources with a bias towards  ## InfoSec News and Blogs * [Risky Business - Risky Business](https://risky.biz/) * [Hacker News](https://news.ycombinator.com/) * [The DFIR Report](https://thedfirreport.com/) * [The Hacker News](https://thehackernews.com/?m=1) * [Unsupervised Learning, by Daniel Miessler](https://danielmiessler.com/) * [tl;dr sec](https://tldrsec.com/) * [Simon Willison’s Weblog](https://simonwillison.net/) * [Starting Up Security](https://scrty.io/) * [Rami McCarthy](https://ramimac.me/) * [Krebs on Security](https://krebsonsecurity.com/) * [Detection Engineering Weekly](https://www.detectionengineering.net/) * [Detect FYI](https://detect.fyi/) * [Reverse Engineering](https://reverse.put.as/) * [Security Cryptography Whatever](https://securitycryptographywhatever.com/) * [Cody Thomas – Medium](https://medium.com/@its_a_feature_) ## macOS Security * [Advanced macOS Commands - saurabhs.org](https://saurabhs.org/advanced-macos-commands) * [macOS Internals · GitHub](https://gist.github.com/kconner/cff08fe3e0bb857ea33b47d965b3e19f) * [Objective-See: Blog](https://objective-see.org/blog.html) * [Apple Platform Security - Apple Support (CA)](https://support.apple.com/en-ca/guide/security/welcome/web) * [A launchd Tutorial](https://www.launchd.info/) * [Crash Security - Notes](https://notes.crashsecurity.io/notes) * [Blog – Random Security Research](https://alexplaskett.github.io/) * [mac4n6.com](https://www.mac4n6.com/) * [Blog](https://saagarjha.com/blog/) * [The Desolation of Blog](https://lapcatsoftware.com/articles/index.html) * [Blog – The Mitten Mac](https://themittenmac.com/blog/) * [Posts | IT Security blog](https://wojciechregula.blog/post/) ## Tools * [seclook](https://seclook.app/) - Automatic security lookups from your clipboard * [Zed - The editor for what's next](https://zed.dev/) - Fast code editor * [BenQ ZOWIE EC2-CW](https://www.amazon.com/gp/product/B0BXT6PWMS) - Good mouse * [Obsidian](https://obsidian.md/) - For remembering stuff * [Raycast](https://www.raycast.com/) - macOS productivity * [Fly](https://fly.io/) - Hosting side projects and POCing ideas * [Sh\_d\_n](https://shdn.io/) - Fast lookups for specific resources (IPs and domains) * [GitHub - trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog) - Find, verify, and analyze leaked credentials * [Tines](https://www.tines.com/) - SOAR tool * [Sublime Security](https://sublime.security/) - Self-hosted email security * [bruno](https://www.usebruno.com/) - Postman but not enshittified * [NetNewsWire](https://netnewswire.com/)- RSS reader * [Objective-See: LuLu](https://objective-see.org/products/lulu.html) - Firewall for macOS malware sandboxing * [GitHub - projectdiscovery/nuclei](https://github.com/projectdiscovery/nuclei) - Fast and customizable vulnerability scanner * [NextDNS](https://nextdns.io/) - Set it and forget it DNS * [Tailscale](https://tailscale.com/) - VPN / software-defined networks * [Warp](https://www.warp.dev/) - Fast terminal with some nice QOL features * [Proxmox](https://www.proxmox.com/en/) - For self-hosting stuff * [Canarytokens](https://canarytokens.org/) - Lightweight sensors for detecting anomalous activity * [Vimium - Chrome Web Store](https://chromewebstore.google.com/detail/vimium/dbepggeogbaibhgnhhndojpepiihcmeb) - Keyboard shortcuts in Chrome