Roadmap
Completed
- [x] Polymorphic trinity generator
- [x] Configurable killdate/workingtime
- [x] C2 Redirector support
- [x] Process Hollowing: Injection of Windows PE into sacrificial process
- [x] Failover server deployment support
- [x] In-memory COFF/BOF Execution
- [x] Powershell module handler
- [x] Active Agent alerting system to all connected clients
- [x] In-memory .NET execution
- [x] Modular Payload architecture
- [x] Enhanced Task Orchestrator
- [x] Failover handler for managing primary and secondary C2s
- [x] Socks5 support for reverse proxying
- [x] NtQueueApcThread,NtCreateThreadEx,RtlCreateUserThread Shellcode injection into sacrificial process
- [x] Load PE Reflectively via goffloader library
- [x] Extension Package Manager(Armory)
- [x] Integrate Donut for Trinity Shellcode generation
- [x] 2.0 Stable release
Actively Under development
- [ ] Shellcode stager
- [ ] Local file as BOF argument
- [ ] Extension Package Repository
- [ ] Window process migration
- [ ] Modular support for custom listeners
- [ ] GUI-based remote client
To be implemented
- [ ] Support for additional communication channels
- [ ] File browser
- [ ] Large powershell scripts broken down in chunks in-memory to bypass characater limit
- [ ] DNS over HTTPS
- [ ] URI endpoint rotation in malleable profiles
- [ ] Runtime obfuscation
- [ ] OPSEC Safe P2P Agent communication
- [ ] Early bird APC injection
- [ ] DLL Sideloading
- [ ] Integration with threat intel feeds
Premium
Some fatures are intended to be developed as a premium feature. More details on this later on.