Phil Stokes, Author at SentinelOne

ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

en

English
日本語
Deutsch
Español
Français
Italiano
Dutch
한국어

ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

Phil Stokes

Phil Stokes is a Threat Researcher at SentinelOne, specializing in macOS threat intelligence, platform vulnerabilities and malware analysis. He began his journey into macOS security as a software developer, creating end user troubleshooting and security tools just at the time when macOS adware and commodity malware first began appearing on the platform. Phil has been closely following the development of macOS threats as well as researching Mac software and OS vulnerabilities since 2014.

Security Research

Radare2 Power Ups | Delivering Faster macOS Malware Analysis With r2 Customization

Phil Stokes / May 31, 2023

Learn how to customize radare2 with user-defined aliases, macros and functions for faster and easier binary diffing and analysis.

Atomic Stealer | Threat Actor Spawns Second Variant of macOS Malware Sold on Telegram

macOS | 10 minute read

LockBit for Mac | How Real is the Risk of macOS Ransomware?

From the Front Lines, macOS | 10 minute read

Session Cookies, Keychains, SSH Keys and More | 7 Kinds of Data Malware Steals from macOS Users

macOS | 14 minute read

Hunting for Honkbox | Multistage macOS Cryptominer May Still Be Hiding

macOS | 17 minute read

macOS Payloads | 7 Prevalent and Emerging Obfuscation Techniques

macOS | 10 minute read

7 Ways Threat Actors Deliver macOS Malware in the Enterprise

macOS | 18 minute read

Top 10 macOS Malware Discoveries in 2022

macOS | 16 minute read

V for Ventura | How Will Upgrading to macOS 13 Impact Organizations?

macOS | 10 minute read

Apple’s macOS Ventura | 7 New Security Changes to Be Aware Of

Company | 11 minute read

1 2 3 … 15

SentinelLabs

In the era of interconnectivity, when markets, geographies, and jurisdictions merge in the melting pot of the digital domain, the perils of the threat ecosystem become unparalleled. Crimeware families achieve an unparalleled level of technical sophistication, APT groups are competing in fully-fledged cyber warfare, while once decentralized and scattered threat actors are forming adamant alliances of operating as elite corporate espionage teams.

Latest Tweet

RT @SentinelOne: In this report from last month, @LabsSentinel researcher @spiderspiders_ unpacks the growing trend of ESXi locker use a…6 days ago
RT @philofishal: Is #r2 harder to learn than other #malware reversing platforms? Not sure it is - it's just the learning path is different.…6 days ago
RT @SentinelOne: Power up your macOS malware analysis with radare2! In this latest @LabsSentinel post, @philofishal covers practical exa…6 days ago
RT @SentinelOne: The 23 cybersecurity Twitter accounts we recommend to stay up-to-date on community topics, issues, and news. A thread. 7 days ago

Recent Posts

Kimsuky Strikes Again | New Social Engineering Campaign Aims to Steal Credentials and Gather Strategic Intelligence
June 6, 2023
Operation Magalenha | Long-Running Campaign Pursues Portuguese Credentials and PII
May 25, 2023
Kimsuky | Ongoing Campaign Using Tailored Reconnaissance Toolkit
May 23, 2023

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Twitter
LinkedIn

©2023 SentinelOne, All Rights Reserved.