Windows security systems and research tooling.

A catalog of TITAN projects spanning endpoint telemetry, malware analysis, binary reconnaissance, defensive validation, syscall research, and supporting operator tooling.

Blackbird

Kernel-backed Windows analysis platform for driver telemetry, ETW, memory and process inspection, and detection-chain review in one operator interface.

Blackbird operator interface

RESX

Binary reconnaissance workbench for PE structure, exports, disassembly, symbols, CFG, pseudo-C, syscall stubs, and JSON automation.

RESX VS Code binary analysis overview

Vigil

Focused ETW utility for watching protected filesystem access and process context around sensitive resources.

Vesuki

Rust control-flow hardening research using proc-macro transforms, dispatcher paths, and randomized structural noise.

Vesuki obfuscated control-flow disassembly screenshot

Regera

Compile-time Rust string protection with encrypted literals and compact runtime decrypt shims.

CCGT-Packer

Post-build Windows packing research for PE metadata, encrypted literal storage, and controlled runtime recovery.