Foundation v0.1.0-alpha
Modernizing the technical base. Current stack on Go 1.23, builds with Vite, deploy on a distroless Docker image, CI with lint and coverage. Complete rebrand of the original fork.
What we are building, in order of priority. Updated monthly. No dates, because an early software deadline promise is a broken promise.
v0.1.0-alpha Modernizing the technical base. Current stack on Go 1.23, builds with Vite, deploy on a distroless Docker image, CI with lint and coverage. Complete rebrand of the original fork.
v0.2.0-alpha Native support for multiple organizations on a single instance: workspaces, roles (admin, campaign manager, analyst, viewer), audit log and per-plan quotas.
v0.3.0-alpha Postgres as the primary database, distributed job queue, structured logging, metrics and tracing via OpenTelemetry, S3-compatible storage.
v0.5.0-alpha completed in May 2026
Web interface rewritten in React + TypeScript + shadcn/ui. API described in OpenAPI 3.1. Modern template editor. Support for PT-BR, EN and ES.
SSO via SAML 2.0 and OIDC. MFA with WebAuthn (passkeys) and TOTP. SCIM 2.0 for provisioning. Sync with Azure AD, Google Workspace, Okta and LDAP.
Native connectors for Slack, Microsoft Teams and Discord. A rules engine to automate event-based actions. Per-channel configurable digests.
Exporters for Splunk, Microsoft Sentinel, Elastic, CrowdStrike and CEF/Syslog. Threat-intel import via STIX 2.1 and TAXII.
Delivery via Microsoft Graph, Gmail API and Amazon SES with OAuth. Multi-provider AI assistance (Claude, OpenAI, Gemini, DeepSeek, OpenRouter and local Ollama) to generate and localize attack templates, and explain why a target fell for it — provider chosen per workspace.
Integrated microlearning with event-based auto-enroll. SCORM 1.2/2004 and xAPI support. Awareness score per user and organization. Traceable certificates.
Self-serve signup, billing via Stripe, per-seat plans. Multi-region with data residency: Brazil (São Paulo), EU (Frankfurt) and US (Virginia).
SOC 2 Type II, full LGPD/GDPR, quarterly pentests and a public bug bounty program.
Companies in the alpha weigh in on roadmap decisions. Talk to us before signing a contract with any other vendor.