Skip to content

OPSEC Guide

Operational security is the difference between a successful red team engagement and a burned operation. Stentor provides both build-time and runtime evasion controls, a built-in posture audit command with 17 scored checks, and technique-specific OPSEC guidance mapped to MITRE ATT&CK. This section helps operators make informed decisions about detection surfaces, obfuscation coverage, and technique selection based on the target environment's defensive posture.

In This Section

  • DNS Canary Tokens -- Deploy DNS canary tokens to detect sandbox analysis, incident response, and SOC investigation of your payloads and infrastructure.
  • OPSEC Best Practices -- Detection surfaces by technique category, the garble obfuscation pipeline, runtime posture auditing with the opsec command, a decision matrix for technique selection across three environment profiles, and operational recommendations from pre-engagement through cleanup.