Overview
This page summarizes features and changes projected for upcoming product releases. This list is a projection and does not guarantee that any of the features will be implemented as planned.
Feature Requests
We are always refining our product roadmap. Get your voice heard by submitting a feature request or product feedback here.
Releases
Version 3.0.0: Payload Pipelines and C#/PowerShell Obfuscation API
Features
- Payload Pipelines: An easy-to-use method of dynamically generating payloads leveraging built-in obfuscation techniques from SpecterInsight. Write a payload, dropper, or other tool in C# or PowerShell, then run it through a SpecterInsight payload pipeline to obfuscate the payload resulting in a new, non-signaturized payload every time.
- Arguments for Payload Pipelines API
- C# obfuscation commands for Payload Pipeline scripts:
- Variable name obfuscation
- Class name obfuscation
- Namespace name obfuscation
- String obfuscation
- Class member obfuscation
- Byte array obfuscation
- AMSI bypasses
- Multiple .NET dropper generators
- PowerShell obfuscation commands for Payload Pipeline scripts:
- Variable name obfuscation
- String obfuscation
- AMSI bypasses
- Multiple PowerShell cradle generators
- Additionally persistence payloads
Version 3.1.0: Native Syscall Payload Pipelines
Features
- C# commands for Payload Pipeline scripts:
- P/Invoke to native syscall converter transform
- P/Invoke to native syscall converter cmdlet
- C# Syscall AMSI bypass transform
- C# syscall AMSI bypass cmdlet
- PowerShell Syscall AMSI bypass transform
- PowerShell syscall AMSI bypass cmdlet
- Module
- Direct Syscall module
- Syscall shellcode injection cmdlet
- Syscall file read/write/delete
- Payloads
- XLL/WLL Payload
- chm Payload
Version 4.0.0: Network Evasion
Features
- Randomized HTTP/S endpoints
- Encrypted TCP protocol