This document outlines the planned direction for ProjectAchilles. Features are organized by quarter with status indicators.
Status key: ✓ Shipped · ○ In progress · ∅ Planned
Want to influence the roadmap? Open a GitHub Discussion or upvote existing feature requests.
These features shipped since the v1.0.0 release:
- ✓ Custom Go Agent — Enrollment, heartbeat, task execution, self-updating
- ✓ Build From Source — Go cross-compilation for Windows/Linux (amd64/arm64)
- ✓ Code Signing — Windows Authenticode via osslsigncode with multi-cert management
- ✓ Task Scheduling — Recurring execution with randomized timing
- ✓ 30+ Analytics Endpoints — Defense scores, heatmaps, treemaps, trends, coverage
- ✓ Docker Compose Deployment — Multi-service with optional local Elasticsearch
- ✓ Setup Wizard — Interactive TUI for first-time configuration
- ✓ Git-Synced Test Library — Automatic repository sync with GitHub
- ✓ Multi-Index Management — Per-task ES index targeting, index creation
- ✓ Favorites & Recent Views — Browser module localStorage persistence
- ✓ ngrok Tunnel Support — Configurable domains for remote agent communication
- ✓ LimaCharlie Removal — Replaced with custom agent system
- ✓ macOS Agent Support — darwin/amd64 + darwin/arm64 with launchd and rcodesign
- ✓ Microsoft Defender Integration — Secure Score, alerts, control profiles, cross-correlation
- ✓ Trend Alerting — Slack + email notifications with threshold configuration
- ✓ Notification Bell — In-app alert dropdown in top bar
- ✓ MITRE ATT&CK Coverage Matrix — Visual technique heatmap on browse page
- ✓ Visual Themes — Neobrutalism + Hacker Terminal with phosphor variants
- ✓ Browse Overview Dashboard — 3-tab layout with category metrics
- ✓ Remote Agent Uninstall — Two-phase cleanup from admin UI
- ✓ Risk Acceptance — Accept risk on individual security controls
- ✓ 5 Deployment Targets — Docker Compose, Railway, Render, Fly.io, Vercel
- ✓ Execution Drawer — Run tests directly from browse page
- ✓ Bundle Results Fan-out — Per-control ES documents for cyber-hygiene and intel-driven tests
- ∅ Agent groups with bulk command execution
- ∅ Agent health alerting (offline threshold notifications)
- ∅ Agent configuration profiles (poll interval, update policy per group)
- ∅ Custom analytics dashboards with saved queries
- ∅ CSV/JSON export for all visualizations
- ∅ Blue team response metrics (Time to Detect, Time to Respond)
- ∅ Scheduled report delivery (email/webhook)
- ∅ Test campaigns — grouped multi-test execution with aggregate results
- ∅ Test result comparison across time periods
- ∅ Test tagging and custom metadata
- ∅ Multi-tenancy with role-based access control (RBAC)
- ∅ Public API with OpenAPI specification
- ∅ Kubernetes deployment (Helm charts)
- ∅ Executive PDF report generation
- ∅ SIEM connectors (Splunk, Microsoft Sentinel)
- ∅ Microsoft Teams webhook notifications
- ∅ Ticketing system integration (Jira, ServiceNow)
- ∅ Test SDK — author security tests in Go or Python with a standard interface
- ∅ Plugin/extension system for custom modules
- ∅ Threat intelligence feed integration (STIX/TAXII)
- ∅ AI-powered test recommendations based on coverage gaps
- ∅ Red team collaboration features (shared campaigns, findings)
This roadmap is a living document and will be updated as priorities evolve. Dates are aspirational, not commitments.