Ciptor & Syndis

Ciptor x Syndis: Prove your endpoint defence before attackers do

In four days, our team runs real adversary tradecraft on a standard corporate laptop — LSASS dumps, Pass-the-Hash, RDP hijacking, and AppLocker/WDAC bypasses — to confirm whether your SOC actually detects and responds. No assumptions. Just proof of what your controls stop and what they miss.

We respect your privacy. Unsubscribe at any time.

What is actually being tested

Data Exfiltration & DLP

Outbound exfiltration to cloud storage

Browser-stored password extraction

Lateral Movement

Pass-the-Hash attacks

RDP hijacking to a secondary host

Application Control

AppLocker and WDAC policy bypass attempts

PowerShell Constrained Language Mode (CLM) evasion

LoLBin (Living-off-the-Land Binary) abuse

Credential Access

LSASS memory dumps

Browser-stored password extraction

Credential vault access attempts

Endpoint Protection & Host Hardening.

EDR/AV detection and response validation

Registry and scheduled task manipulation

Privilege escalation paths