Blackbird
Kernel-backed Windows analysis platform for driver telemetry, ETW, memory and process inspection, and detection-chain review in one operator interface.
A catalog of TITAN projects spanning endpoint telemetry, malware analysis, binary reconnaissance, defensive validation, syscall research, and supporting operator tooling.
Kernel-backed Windows analysis platform for driver telemetry, ETW, memory and process inspection, and detection-chain review in one operator interface.
Binary reconnaissance workbench for PE structure, exports, disassembly, symbols, CFG, pseudo-C, syscall stubs, and JSON automation.
Controlled Windows syscall research engine for validating telemetry assumptions at the user-to-kernel execution boundary.
Focused ETW utility for watching protected filesystem access and process context around sensitive resources.
Rust control-flow hardening research using proc-macro transforms, dispatcher paths, and randomized structural noise.
Compile-time Rust string protection with encrypted literals and compact runtime decrypt shims.
Post-build Windows packing research for PE metadata, encrypted literal storage, and controlled runtime recovery.