WHAT IS MUTANT
Big-picture explanations, quick reference material, and definitive orientation docs.
what is mutant mutant is a programming language built for practical security work forensic automation and cross-platform analysis tooling it is not just a scripting language with a few security helpers bolted on the language compiler virtual machin...
Overview Audience: all Score: 9.599 Term: binaryTerm: artifactTerm: security
FINAL SUMMARY
Big-picture explanations, quick reference material, and definitive orientation docs.
final security summary current state this is the consolidated current-state summary for mutant security 1 what is fully in place 1 signed artifact verification paths and secure-mode sign...
Overview Audience: all Score: 7.09 Term: binaryTerm: artifactTerm: securityTerm: deepTerm: dive
QUESTIONS ANSWERED
Big-picture explanations, quick reference material, and definitive orientation docs.
questions answered code-synced this document answers common security questions using current implementation behavior 1 is anti-debugging implemented yes 1 platform-specific detection exists in security package 2 runner enforces checks at pr...
Overview Audience: all Score: 6.714 Term: security
QUICK REFERENCE
Canonical policies, reference sheets, migration matrices, and source-of-truth documentation.
mutant security quick reference what is protected mutant now ships with layered anti-tamper and hardening controls for the signed artifact runtime and risky builtins core controls 1 signe...
Reference Audience: language-user Score: 6.399 Term: artifactTerm: security
SECURITY LLD
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
1 document purpose this document defines the low-level security design for mutant s bytecode generation signing transport loading verification runtime execution anti-debugging integrity monitoring and telemetry paths it is implementati...
Security Audience: security-analyst Score: 5.749 Term: binaryTerm: artifactTerm: securityTerm: deepTerm: dive
BINARY ARTIFACT SECURITY DEEP DIVE
Bytecode, VM, polymorphism, and execution internals.
binary artifact security deep dive 1 scope this deep dive covers binary artifact security for mutant from generation to runtime load 1 signed mu envelope format and trust model 2 s...
Runtime Audience: platform-engineer Score: 5.011 Term: binaryTerm: artifactTerm: securityTerm: deepTerm: dive
IMPLEMENTATION GUIDE
Editor integration, implementation workflow, and operational runbooks.
security implementation guide current next steps this guide explains what to implement next without repeating already completed migrations 1 current baseline assumptions already av...
Tooling Audience: integrator Score: 4.81 Term: security
SECURITY RUNBOOK
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
1 purpose this runbook explains how to triage and respond to mutant runtime security events using current code behavior 1 1 source-of-truth alignment this runbook is operational guidance when any statement here conflicts with low-level design treat the fol...
Security Audience: security-analyst Score: 4.198 Term: binaryTerm: artifactTerm: securityTerm: deepTerm: dive
SECURITY ENHANCEMENTS
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
security enhancements roadmap code-synced this document tracks enhancement work from current implementation to future hardening status tags 1 implemented 2 partial 3 planned canoni...
Security Audience: security-analyst Score: 4.076 Term: artifactTerm: securityTerm: deepTerm: dive
SECURITY LLD TRACEABILITY
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
1 purpose this document provides end-to-end traceability from security design intent to concrete implementation and validation it maps 1 security requirements and controls 2 implementation anchors functions files 3 runtime configuration surfa...
Security Audience: integrator Score: 3.975 Term: binaryTerm: artifactTerm: securityTerm: deepTerm: dive
REMOTE PROCESS SCAN DEEP DIVE
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
remote process scan deep dive 1 scope this document describes the current remote process scan architecture and integration points it covers 1 config and mode gates 2 verdict correlation model 3 teleme...
Security Audience: security-analyst Score: 3.411 Term: securityTerm: deepTerm: dive
DETAILED EXPLANATIONS
Big-picture explanations, quick reference material, and definitive orientation docs.
detailed security explanations current behavior this document explains the main security building blocks in simple language 1 policy-driven security mutant does not hardcode one response fo...
Overview Audience: all Score: 3.266 Term: securityTerm: deepTerm: dive
PROCESS INJECTION DETECTION LLD
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
...n --- 3 current implementation summary 3 1 where the logic lives - probe router security antitamper_routing go - probe engine security antitamper_probe go - windows probe implementations security antitamper_windows go - probe names and confidences security ant...
Security Audience: security-analyst Score: 3.138 Term: securityTerm: deepTerm: dive
VISUAL COMPARISON
Canonical policies, reference sheets, migration matrices, and source-of-truth documentation.
visual comparison current security model 1 detection vs enforcement mermaid diagram old confusion 1 signal and action were treated as the same concept current model 1 signal generation is separate from poli...
Reference Audience: all Score: 2.388 Term: security
ANTITAMPER PROBE
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
...r enforcement differs from builtin diagnostic calls 1 architecture core files 1 security antitamper_probe go engine enablement gate 2 security antitamper_routing go probe dispatch 3 security antitamper_detectors go cross-platform heuristics 4 security antitamp...
Security Audience: security-analyst Score: 2.299 Term: securityTerm: deepTerm: dive
WASM REPL REFERENCE
Canonical policies, reference sheets, migration matrices, and source-of-truth documentation.
...ry db host-bound builtins not supported fs process exec network registry memory binary disk-image families completion modes supported supported callable-now and all discoverability output model supported buffered putf putln optional final expression append err...
Reference Audience: language-user Score: 2.265 Term: binaryTerm: artifactTerm: securityTerm: deep
MUTANT LANGUAGE REFERENCE
Canonical policies, reference sheets, migration matrices, and source-of-truth documentation.
...s information - exec_string command shell - executes a shell command string via security-guarded command execution - process_env pid - returns environment variables for a process - process_hash pid - computes sha-256 hash metadata for a process executable - pr...
Reference Audience: language-user Score: 1.051 Term: binaryTerm: artifactTerm: security
SECURITY MIGRATION COMPLETE
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
security migration status current this file is the current migration snapshot for mutant security architecture 1 migration goal move from basic protection to policy-driven code-sig...
Security Audience: integrator Score: 1.026 Term: artifactTerm: securityTerm: deepTerm: dive
SECURITY ANSWERS
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
security answers current code this faq is the student-friendly code-accurate version of mutant security behavior 1 is encryption password-based or deterministic both are supported ...
Security Audience: security-analyst Score: 1.015 Term: artifactTerm: securityTerm: deepTerm: dive
SECURITY DIAGRAMS
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
security architecture diagrams code-synced 1 end-to-end runtime security flow mermaid diagram 2 policy decision flow mermaid diagram 3 anti-tamper probe gates mermaid diagram 4 run...
Security Audience: security-analyst Score: 0.753 Term: securityTerm: deepTerm: dive
SANDBOX DETECTION
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
...onfidence is greater than or equal to the built-in threshold currently 70 go if security issandboxed high-confidence sandbox container vm signal detectsandboxtype string int returns the most likely environment type and confidence in 0 100 behavior - returns no...
Security Audience: security-analyst Score: 0.753 Term: securityTerm: deepTerm: dive
SANDBOX FEATURE SUMMARY
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
...verview added comprehensive sandbox and virtual machine detection to the mutant security module this feature complements existing anti-debugging and memory encryption capabilities by detecting when code runs in sandboxed or virtualized environments what was ad...
Security Audience: security-analyst Score: 0.753 Term: securityTerm: deepTerm: dive
SANDBOX COMPLETE SUMMARY
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
... implemented comprehensive sandbox and virtual machine detection for the mutant security framework this new feature detects when code executes in virtualized environments containers or sandboxes across windows linux and macos platforms what 39 s new three core...
Security Audience: security-analyst Score: 0.753 Term: securityTerm: deepTerm: dive
ANTITAMPER PROBE ENABLEMENT LLD
Tamper resistance, sandboxing, remote scan policy, and security deep dives.
...ocument production recommended env posture 2 add deployment checks for required security runtime settings risk 1 false positives when a single heuristic is noisy mitigation 1 keep confidence thresholding and multi-probe context 2 review detail field before esc...
Security Audience: security-analyst Score: 0.753 Term: securityTerm: deepTerm: dive
BYTECODE IR
Bytecode, VM, polymorphism, and execution internals.
... instruction encoding the constant pool compiler internals the stack-machine vm security machinery and the polymorphic mutation engine status note this is a deep technical reference for current feature enablement and rollout status especially anti-tamper gates...
Runtime Audience: platform-engineer Score: 0.12 Term: binaryTerm: artifactTerm: securityTerm: deep