skills.homes logoskills.homescapability registry
home/categories/framework-internals/purpleailab-decepticon-skills-shared-defense-evasion-skill-md
cd ..
framework-internalsdevelopment

defense-evasion

Endpoint defense bypass — AMSI/ETW patching, ScareCrow framework, custom loaders, direct/indirect syscalls, LOLBAS execution, process injection.

View Sourceframework-internals
PurpleAILAB
maintainer
PurpleAILAB
Updated 4/4/2026
Stars
1099
Forks
203
quick start

Installation and usage

Endpoint defense bypass — AMSI/ETW patching, ScareCrow framework, custom loaders, direct/indirect syscalls, LOLBAS execution, process injection.

Installation
$ install --globalskills.sh
Usage

Once installed, you can use this skill by running the following command in your terminal:

skills use defense-evasion