Version 1.0



  • Load shared libraries, call arbitrary functions from lua without static linking
    • Functions to load and execute functions in shared libraries from lua
    • Function to execute system calls without going via shared libraries

Not started

  • Secure communications
    • Key exchange
    • Encryption
  • Communication
    • A communication protocol?
    • Communication over HTTP
    • Communication over DNS / DoH
  • Some kind of useful capabilities
    • File system access
    • Process injection?
  • A simple “lua repl” to control targets

Further work

  • GUI for the server side (probably HTTP)
  • More capabilities
  • More communication possibilities
  • Support for infecting additional operating systems
  • Research alternatives to lua
  • Functionality to avoid hooked API functions