Unhook EDR hooks in ntdll.dll on the target system then ingress an agent configuration file and agent DLL. Store a custom
key in the registry then install a Netsh helper DLL. The helper DLL uses SysWhispers to perform direct system calls to
NtCreateThreadEx against the stored registry key entry.
About PreludePrelude hardens an organization's defenses by continuously “asking” it questions through the form of safe cyberattacks. These attacks respond immediately to the latest vulnerabilities and cyber events, turning complex technical descriptions into deployable “questions”.Our mission is to increase the reach, frequency and usage of advanced security for all organizations.