Explore TITAN's current public systems: Blackbird, RESX, ActiveBreach Engine, Vigil, Vesuki, Regera, CCGT-Packer, and supporting security tooling across endpoint visibility, binary analysis, emulation, obfuscation, and reverse engineering.
TITAN focuses on Windows internals research, low-level security engineering, DFIR, malware reverse engineering, offensive tooling, EDR/sensor development, and systems built around kernel, memory, and instrumentation work.
Work centers on native APIs, memory, kernel paths, drivers, hypervisor boundaries, anti-cheat and anti-tamper systems, EDR/XDR, antivirus, and security software internals. Research combines reverse engineering, runtime tracing, and implementation-level testing.
TITAN builds frameworks, libraries, SDKs, and tooling where existing approaches leave gaps. Public research and older concepts are used as starting points, then reworked into cleaner, maintainable systems. ActiveBreach applies that model to the SysWhispers lineage.
DFIR and malware analysis work covers evidence reconstruction, behavioral analysis, and detection engineering. Offensive techniques are developed as test cases where useful, then used to sharpen EDR logic and sensor design.
Share your email and context. The form opens a drafted inquiry in your email client.