HN Reader

Edamagit: Magit for VSCode (github.com)

1 points by tosh 4m ago 0 comments

Derek Muller Confronts PFAS "Forever Chemicals"–In His Own Blood (scientificamerican.com)

2 points by ibobev 5m ago 0 comments

Nerding Out about Heaters (herman.bearblog.dev)

1 points by HermanMartinus 9m ago 0 comments

Show HN: Minimal Tool to View Top Reddit Posts–No Login, No Tracking (reddit-top.pages.dev)

1 points by pekingzcc 11m ago 0 comments

Seeking beta users for Webhound, an AI agent that builds datasets from the web

1 points by mfkhalil 15m ago 0 comments

Game Accessibility Guidelines (gameaccessibilityguidelines.com)

1 points by ibobev 17m ago 0 comments

Social media lies fuelled a rush to war between India and Pakistan (theguardian.com)

1 points by beardyw 19m ago 0 comments

Mastering Modern Monorepo Development with Pnpm, Workspaces (jsdev.space)

1 points by javatuts 20m ago 0 comments

Why I Am No Longer an AI Doomer (thedeepdish.org)

3 points by nathan_f77 24m ago 1 comments

Safari Technology Preview 220 Release Notes (developer.apple.com)

1 points by tosh 26m ago 0 comments

Gurus of 90s Web Design: Zeldman, Siegel, Nielsen (cybercultural.com)

2 points by panic 30m ago 0 comments

Flame Charts: The Time-Aware Sibling of Flame Graphs (polarsignals.com)

1 points by tanelpoder 30m ago 0 comments

Haiti's Beleaguered Government Launches Drones Against Gangs (wsj.com)

1 points by Michelangelo11 31m ago 0 comments

Archaea (en.wikipedia.org)

1 points by lukan 32m ago 0 comments

Kigen – Design system token and style generator (kigen.design)

1 points by realvjy 35m ago 1 comments

Einstein, Hawking, and Tao (Haiku) (jerry.wtf)

1 points by personjerry 37m ago 1 comments

Michigan Isn't Supposed to Have Earthworms [video] (youtube.com)

1 points by tarcar 37m ago 0 comments

Agents Aren't Juniors, They Are Amnesiac Spies (avdi.codes)

3 points by kiyanwang 43m ago 1 comments

Agentic book – The Human Algorithm [pdf] (github.com)

1 points by JayD0ubleu 43m ago 0 comments

Philips Ease (thefoggiest.dev)

1 points by ingve 46m ago 0 comments

Haskell Weekly Issue 474 (haskellweekly.news)

2 points by amalinovic 50m ago 0 comments

Intel Shows Off Professional Battlemage Cards (semiaccurate.com)

2 points by walterbell 53m ago 0 comments

Ivey Business School's Value Investing Program – Adam Waterous [video] (youtube.com)

1 points by chenchenchen 1h ago 1 comments

Top math software platform still offline following ransomware attack (techradar.com)

1 points by howisthatposs 1h ago 0 comments

Show HN: OpenDeRisk – open-source intelligent app risk manager (github.com)

1 points by jamie-vesoft 1h ago 0 comments

China extends its reach into the Solar System with launch of asteroid mission (arstechnica.com)

3 points by rbanffy 1h ago 1 comments

Elon Musk exits US Government after breaking with Trump on tax bill (theguardian.com)

5 points by dagss 1h ago 1 comments

Redesigning the Initial Rust Bootstrap Sequence (blog.rust-lang.org)

3 points by ingve 1h ago 0 comments

NI3 (en.wikipedia.org)

1 points by keepamovin 1h ago 2 comments

Rethinking African edtech: Why AI alone won't be enough (techcabal.com)

1 points by MarcoDewey 1h ago 0 comments

Show HN: Flags Quiz – Flags of All World Countries (flags-quiz.com)

1 points by artiomyak 1h ago 0 comments

Saying Bye to Glitch (pketh.org)

3 points by tobr 1h ago 0 comments

We built a distributed cache for S3 (clickhouse.com)

2 points by samaysharma 1h ago 0 comments

Read Frog – Open-Source AI Language Translator and Teacher in Browser (github.com)

1 points by mengxi-ream 1h ago 1 comments

The weight of an entire industry trying to convince you that you're inadequate (buttondown.com)

3 points by tobr 1h ago 1 comments

Show HN: Warden – A Native (and Free) AI Chat App for macOS (karatsidhu.gumroad.com)

2 points by skarat 1h ago 0 comments

What's cooking on Sourcehut? Q2 2025 (sourcehut.org)

2 points by Tomte 1h ago 0 comments

STOC Best Paper Award: How to Find the Shortest Path – Faster (mpi-inf.mpg.de)

1 points by mfiguiere 1h ago 0 comments

Cyber Resilience Act and Open Source: What Maintainers Need to Know [video] (youtube.com)

2 points by lis 1h ago 0 comments

Glacier collapse buries most of Swiss village (bbc.com)

6 points by hubraumhugo 1h ago 1 comments

Show HN: Entropy – Sharing screen is scary in SaaS age (entropysec.io)

2 points by RazCo 1h ago 0 comments

Emergency We Cannot Feel: On the Psychological Unreadiness for American Collapse (notesfromthecircus.com)

7 points by cmurf 1h ago 2 comments

Statically typed languages are like Elephants

1 points by pyeri 1h ago 0 comments

Raw.githubusercontent.com – How to authenticate and see headers with info? (github.com)

2 points by jarofgreen 1h ago 0 comments

No iOS 19: Apple Going Straight to iOS 26 (macrumors.com)

1 points by Tomte 1h ago 0 comments

Show HN: I made an AI prompt manager to stop rewriting the same prompts (echostash.app)

1 points by debeast 1h ago 1 comments

Front End Engineering Team Working Style Guide (github.com)

1 points by vishwajeetv 2h ago 0 comments

The Maid Who Restored Charles II (historytoday.com)

3 points by samclemens 2h ago 0 comments

YouTube Is Swallowing TV Whole, and It's Coming for the Sitcom (bloomberg.com)

2 points by helsinkiandrew 2h ago 1 comments

The Art of the Critic (metropolitanreview.org)

3 points by benbreen 2h ago 1 comments

Show HN: A native macOS guard to defend crypto wallets from malware

1 feriancek 1 5/28/2025, 12:15:29 AM getshieldkey.com ↗
I’m Fer, a Mac user who learned the hard way that “normal” AV doesn’t catch modern wallet-stealer families (AMOS / Poseidon / Banshee / Atomic, etc.). So I built ShieldKey: a Swift/Rust, always-local layer that covers the specific attack surface of crypto wallets on macOS.

What ShieldKey does today

* Process-level wallet cage via EndpointSecurity + Sandbox: blocks anything touching wallet paths (~/Library/Application Support/…, browser Local Storage, USB HID for Ledger/Trezor) unless it’s on an allow list

* Network Extension blocks known phishing domains before the browser even loads them

* Clipboard / window-title watcher for seed patterns (base58 / hex)

* 1 800 macOS stealer hashes in a compact YARA+SHA table (mmap, ~20 µs lookup)

* One-click “wallet lock”: chmod browser-wallet storage to 000 and auto-eject HW wallets

* 100 % offline; UI is SwiftUI, engine is a 4 MB static Rust daemon

Why bother when objective-see or commercial AV exist?

- Objective-see is awesome but pops LOTS of alerts—ShieldKey ships wallet-specific heuristics so users get one actionable alert, not 200. - Commercial AVs flagged <10 % of the macOS stealer hashes we collected since Jan 2024 (VirusTotal data). They also don’t understand Ledger HID traffic or MetaMask’s plaintext vault.

Architecture

- shieldd (daemon): Rust, Tokio, subscribes to EndpointSecurity, FSEvents, HID, NetExt - shieldctl (CLI): sends YAML → gRPC to daemon, emits JSON for UI - ShieldKey.app: SwiftUI menu-bar wrapper - Rules pack compiled into a single kcdb file (mmap B-Tree, O(log n))

Limitations

- No in-browser JS detection; if you paste a seed, JS phishing can still grab it - No rule revocation yet - whole pack must update - Only tested on Monterey through Sonoma

Roadmap

- Signed rule updates over Tor (opt-in) - Hardware-wallet micro-firewall (USB endpoint filter) - Transparency log for notarized releases - Public repo once code is hardened

Try it / tear it apart

Get DMG : https://getshieldkey.com brew tap coming this week. shieldctl --dry-run shows every ES event.

Looking for feedback: missed attack surfaces, EndpointSecurity edge cases, UI nits. If you’ve got macOS stealer samples I don’t detect, send hashes (or encrypted zips) to bugs@getshieldkey.com.

Comments (1)

bobman420 · 17h ago
Malware. Do not download. This is a variant of the same infostealer posted on Reddit under ‘clippy for macOS’ and ‘nintendifier’