-
Notifications
You must be signed in to change notification settings - Fork 158
Roadmap
ECS based attached runs Done
https://github.com/remind101/empire/wiki/RFC:-Use-RunTask-API-for-attached-runs
We'd like to support an emp attach command to allow attaching to an existing process.
We'd like to support exec'ing a process in an existing task (e.g. to gdb debug something).
We'd like to provide a native Slack slash command built into Empire for perform operations. See https://github.com/remind101/empire/pull/708 for a work in progress implementation.
The current API is a re-construction of the Heroku Platform API and we use a fork of the hk client. As Empire has grown, we've begun to outgrow the constraints of the Heroku API.
To avoid server/client boilerplate, I would suggest that we move to a GRPC based API and client. GRPC also handles bi-directional streaming well, which means we could get rid of the Hijack hacks for interactive runs.
We'd like to have the ability to provide granular access control, so that teams only have access to the bare minimum.
See https://github.com/remind101/empire/wiki/ACL-Proposal
We'd like to be able to wrap security sensitive actions with a confirmation check (maybe via push notification), so that if an employee's laptop is compromised, or an access tokens is leaked, an attack could not gain access to our infrastructure.
See https://github.com/remind101/empire/wiki/Action-Confirmations-Proposal