VYPR
researchPublished Jul 12, 2026· 1 source

KittySploit: AI-Powered Penetration Testing Framework Launched with 1150+ Modules

A new open-source penetration testing framework, KittySploit, integrates local AI agents for autonomous attack path planning, featuring over 1,150 modules and a hybrid Python/Zig core.

A new open-source penetration testing framework named KittySploit has been released, aiming to revolutionize offensive security operations by integrating artificial intelligence for autonomous attack path planning. This comprehensive toolchain boasts over 1,150 modules and is built on a hybrid Python and Zig codebase, designed for enhanced speed and stealth.

The core innovation of KittySploit lies in its integration of local large language models (LLMs) via Ollama. This allows AI agents to autonomously devise attack strategies after being provided with a target name. The agent is capable of handling reconnaissance, evaluating available modules, and suggesting exploitation pathways without requiring constant manual input from the operator, aligning with the growing trend of AI-driven pentesting agents in the cybersecurity industry.

This AI layer extends beyond a simple chatbot interface. Recent development indicates components for planning, response caching, workflow management, and HTTP intelligence, suggesting a sophisticated AI-driven operational capability. The framework's payloads are compiled using an integrated Zig 0.16 toolchain, producing polymorphic encoders designed to bypass modern Endpoint Detection and Response (EDR) and Web Application Firewall (WAF) defenses. This evasion-first approach, coupled with multi-protocol session handling and native Tor routing, positions KittySploit as a potent tool against contemporary automated defense systems.

KittySploit also introduces KittyProxy, an intelligent web proxy designed to automatically discover REST APIs, GraphQL endpoints, and WebSocket connections. Critically, it can then automatically execute relevant exploitation modules directly from the observed traffic. This "smart proxy" functionality aims to streamline the assessment of modern web architectures by eliminating manual mapping steps that often slow down traditional security testing.

Beyond its technical capabilities, KittySploit emphasizes collaboration and community. It includes KittyCollab, a real-time shared editor for team-based operations, and a modern web UI for proxy analysis and workflow management. Furthermore, the framework features a community-driven marketplace where users can install or share new modules, a significant ecosystem feature that differentiates it from established tools like Metasploit and Cobalt Strike.

The framework's hybrid Python/Zig core is built for performance and stealth, contrasting with legacy tools often written in Ruby or Java. The Zig compilation ensures dependency-free, stealthy executables, making it harder for security solutions to detect and block. This focus on modern development practices and advanced evasion techniques makes KittySploit a notable entry in the field of penetration testing tools.

KittySploit's release signifies a move towards more autonomous and AI-assisted penetration testing, providing security professionals with a powerful, versatile, and modern framework. Its extensive module library, AI-driven planning, and focus on stealth and evasion are expected to make it a valuable asset for red teams and offensive security professionals.

Synthesized by Vypr AI