Emul4nt/echolalia — reverse-engineered prompt

Build me a Windows Go security research tool for authorized lab testing with Sliver. It should watch normal outbound TCP traffic for a short time, pick a stable real process to mimic, save a traffic profile, then use that profile to split and time beacon data so the packet sizes and pauses look similar to the chosen process.

It should work by default with built in Windows traffic data, and use Npcap for better packet samples and TLS details when available. Include a profiler command, an end to end demo beacon with a dry run mode, and a transport layer that can plug into Sliver by asking for a beacon payload and delivering the response back.

Please add a simple statistical check that compares the shaped output with a fresh reference sample, plus tests or a harness for that. Keep it Windows focused, document how to build it, and make the README clear that it’s only for systems I own or have written permission to test.