Veil-Evasion

This is the Veil-Evasion module documentation. For the full, detailed documentation, visit the primary Veil-Evasion page.

Quick Overview

Veil-Evasion is the payload generation engine within the Veil Framework. It produces test payloads in multiple languages (Python, C, PowerShell, Ruby) designed to evaluate whether your endpoint detection controls identify specific evasion techniques.

The module is most valuable when used within a full monitoring stack — Sysmon, PowerShell logging, EDR telemetry, and centralized log collection — so that each generated payload produces measurable detection data.

Key Resources

• Full Veil-Evasion Documentation — Complete module guide with detection strategies
• Framework Overview — How Evasion fits into the broader architecture
• Veil Tutorial — Getting started walkthrough
• Modules Directory — All framework modules