Phil Stokes, Author at SentinelOne - Page 2 of 17

VISIT SENTINELONE.COM

Dinesh Devadoss & Phil Stokes

Phil Stokes is a Threat Researcher at SentinelOne, specializing in macOS threat intelligence, platform vulnerabilities and malware analysis. He began his journey into macOS security as a software developer, creating end user troubleshooting and security tools just at the time when macOS adware and commodity malware first began appearing on the platform. Phil has been closely following the development of macOS threats as well as researching Mac software and OS vulnerabilities since 2014.

XLoader’s Latest Trick | New macOS Variant Disguised as Signed OfficeNote App

From the Front Lines | 5 minute read

Mac Admins | Why Apple’s Silent Approach to Endpoint Security Should be a Wake-Up Call

macOS | 8 minute read

Apple Crimeware | Massive Rust Infostealer Campaign Aiming for macOS Sonoma Ahead of Public Release

From the Front Lines, macOS | 12 minute read

BlueNoroff | How DPRK’s macOS RustBucket Seeks to Evade Analysis and Detection

From the Front Lines | 12 minute read

JokerSpy | Unknown Adversary Targeting Organizations with Multi-Stage macOS Malware

From the Front Lines | 8 minute read

Automating String Decryption And Other Reverse Engineering Tasks In Radare2 With R2pipe By Phil Stokes 1

Security Research

Automating String Decryption and Other Reverse Engineering Tasks in radare2 With r2pipe

Phil Stokes / June 21, 2023

Learn how to drive radare2 with r2pipe for automated binary analysis, string decryption and other common reversing tasks.

macOS 14 Sonoma | Toughening up macOS for the Enterprise?

macOS | 8 minute read

Radare2 Power Ups Delivering Faster MacOS Malware Analysis With R2 Customization 5

Security Research

Radare2 Power Ups | Delivering Faster macOS Malware Analysis With r2 Customization

Phil Stokes / May 31, 2023

Learn how to customize radare2 with user-defined aliases, macros and functions for faster and easier binary diffing and analysis.

Geacon Brings Cobalt Strike Capabilities to macOS Threat Actors

From the Front Lines, macOS | 6 minute read

Atomic Stealer | Threat Actor Spawns Second Variant of macOS Malware Sold on Telegram

macOS | 16 minute read

1 2 3 4 … 17

SentinelLabs

In the era of interconnectivity, when markets, geographies, and jurisdictions merge in the melting pot of the digital domain, the perils of the threat ecosystem become unparalleled. Crimeware families achieve an unparalleled level of technical sophistication, APT groups are competing in fully-fledged cyber warfare, while once decentralized and scattered threat actors are forming adamant alliances of operating as elite corporate espionage teams.

Recent Posts

LABScon23 Replay | Meet the Iranian Company Powering Russia’s Drone War on Ukraine
April 23, 2024
AcidPour | New Embedded Wiper Variant of AcidRain Appears in Ukraine
March 21, 2024
Doppelgänger | Russia-Aligned Influence Operation Targets Germany
February 22, 2024

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Twitter
LinkedIn

©2024 SentinelOne, All Rights Reserved.