diff --git a/README.md b/README.md
index 8da86210..0855afda 100644
--- a/README.md
+++ b/README.md
@@ -25,7 +25,7 @@
View Complete Projects:
@@ -95,7 +95,6 @@ Tools, courses, certifications, communities, and frameworks for cybersecurity pr
| **[Steganography Multi-Tool](./SYNOPSES/beginner/Steganography.Multi.Tool.md)**
Hide data in images, audio, QR, PDFs, text |    | Multi-format steganography • Zero-width Unicode • Audio LSB • QR exploitation
[Learn More](./SYNOPSES/beginner/Steganography.Multi.Tool.md) |
| **[Ghost on the Wire](./SYNOPSES/beginner/Ghost.On.The.Wire.md)**
L2 attack & defense: MAC spoofing + ARP detection |    | ARP protocol • MAC spoofing • MITM detection • L2 trust mapping
[Learn More](./SYNOPSES/beginner/Ghost.On.The.Wire.md) |
| **[Canary Token Generator](./PROJECTS/beginner/canary-token-generator)**
Self-hosted honeytokens that alert on access |      | Deception defense • Honeytokens • MySQL wire protocol • PDF/DOCX patching • Webhook + Telegram alerting
[Source Code](./PROJECTS/beginner/canary-token-generator) \| [Docs](./PROJECTS/beginner/canary-token-generator/learn)
[](https://iglowinthedark.com/) |
-| **[Security News Scraper](./SYNOPSES/beginner/Security.News.Scraper.md)**
Aggregate cybersecurity news |    | Web scraping • CVE parsing • Database storage
[Learn More](./SYNOPSES/beginner/Security.News.Scraper.md) |
| **[Phishing Domain Generator & Quishing Scanner](./SYNOPSES/beginner/Phishing.Domain.Generator.And.Quishing.Scanner.md)**
Typosquat generation + QR phishing detection |    | Homoglyph attacks • Typosquatting • QR code analysis • Domain intelligence
[Learn More](./SYNOPSES/beginner/Phishing.Domain.Generator.And.Quishing.Scanner.md) |
| **[SSH Brute Force Detector](./SYNOPSES/beginner/SSH.Brute.Force.Detector.md)**
Monitor and block SSH attacks |    | Log parsing • Attack detection • Firewall automation
[Learn More](./SYNOPSES/beginner/SSH.Brute.Force.Detector.md) |
| **[Simple C2 Beacon](./PROJECTS/beginner/c2-beacon)**
Command and Control beacon/server |      | C2 architecture • MITRE ATT&CK • WebSocket protocol • XOR encoding
[Source Code](./PROJECTS/beginner/c2-beacon) \| [Docs](./PROJECTS/beginner/c2-beacon/learn) |
@@ -112,6 +111,7 @@ Tools, courses, certifications, communities, and frameworks for cybersecurity pr
| Project | Info | What You'll Learn |
|---------|------|-------------------|
+| **[Security News Scraper](./SYNOPSES/beginner/Security.News.Scraper.md)**
Aggregate cybersecurity news |    | Web scraping • CVE parsing • Database storage
[Source Code](./PROJECTS/intermediate/security-news-scraper) \| [Docs](./PROJECTS/intermediate/security-news-scraper/learn) |
| **[Payload Obfuscation Engine](./SYNOPSES/intermediate/Payload.Obfuscation.Engine.md)**
Multi-layer payload obfuscation toolkit |    | Obfuscation techniques • Polymorphism • AV evasion • Signature detection
[Learn More](./SYNOPSES/intermediate/Payload.Obfuscation.Engine.md) |
| **[SIEM Dashboard](./SYNOPSES/intermediate/SIEM.Dashboard.md)**
Log aggregation with correlation |     | SIEM concepts • Log correlation • Full-stack development
[Source Code](./PROJECTS/intermediate/siem-dashboard) \| [Docs](./PROJECTS/intermediate/siem-dashboard/learn)
[](https://siem.carterperez-dev.com/) |
| **[Token Abuse Playground](./SYNOPSES/intermediate/Token.Abuse.Playground.md)**
15+ token vulnerabilities to exploit and fix |     | JWT exploitation • OAuth attacks • Session security • Token forensics
[Learn More](./SYNOPSES/intermediate/Token.Abuse.Playground.md) |