Series

Security Research

Technical security write-ups covering malware, abuse, impersonation, supply-chain risks, and real-world trust boundary failures.

nailproxy.space: A Multi-Repository GitHub Malware Campaign
Update (2026-04-22, 13:33): I submitted this case to GitHub Support for campaign-level review. Ticket ID: 4313391. TL;DR: What initially looked like a single fraudulent repository impersonating UNIC
Apr 22, 20269 min read26
Security Warning: Fraudulent GitHub Repository Impersonating UNICORN Binance WebSocket API
Update (2026-04-22): Further analysis indicates that this fraudulent repository is likely one lure within a broader GitHub malware campaign.Across the currently confirmed set, multiple repositories sh
Apr 22, 202611 min read22
When IP Whitelisting Isn't What It Seems: A Real-World Case Study from the Binance API
An architectural trust-boundary issue in the world's largest crypto exchange.
Apr 20, 202610 min read35

Security Research