KittySploit is a brand new open-source penetration testing framework that mixes a Python and Zig codebase with autonomous AI brokers, shipping with over 1,150 modules for offensive safety groups.
The instrument chain contains reconnaissance, exploitation, visitors evaluation, payload era, collaboration, and post-exploitation workflows.

KittySploit’s core distinction is its integration of native massive language fashions through Ollama, which permits AI brokers to autonomously plan assault paths after being fed only a goal identify.
This autonomous agent handles reconnaissance and suggests exploitation methods with out fixed handbook enter, a functionality that aligns with the broader business shift towards AI-driven pentesting brokers seen in instruments like PentAGI and xOffense.
The framework’s headline functionality is its autonomous agent. Operators can present a goal and join KittySploit to a regionally hosted massive language mannequin by way of Ollama.
The agent is meant to arrange reconnaissance findings, consider accessible modules, and suggest attainable assault paths with out sending delicate engagement knowledge to a hosted AI service.

Latest code modifications present a default native Ollama endpoint and add planning, response caching, workflow, and HTTP-intelligence elements, indicating that the AI layer extends past a easy chatbot interface.
The framework’s payloads are compiled utilizing an built-in Zig 0.16 toolchain, producing stealthy, dependency-free x64 polymorphic encoders designed to bypass trendy EDR and WAF defenses.
This evasion-first strategy, mixed with multi-protocol session dealing with and native Tor routing, positions KittySploit towards automated protection programs which have made conventional exploitation frameworks much less efficient.
In comparison with legacy instruments written in Ruby or Java, this contemporary Python/Zig hybrid core is constructed for pace and stealth in modern internet environments.
A standout characteristic is KittyProxy, an clever internet proxy that auto-discovers REST APIs, GraphQL endpoints, and WebSocket connections, then mechanically runs related exploitation modules instantly from noticed visitors.
This “sensible proxy” functionality removes handbook mapping steps that usually decelerate assessments of contemporary internet architectures, addressing a niche that many legacy scanners nonetheless wrestle to shut.
KittySploit ships with KittyCollab, a real-time shared editor for team-based operations, alongside a contemporary internet UI for each proxy evaluation and collaborative workflows.
The framework additionally features a community-driven market the place customers can set up or share new modules, an ecosystem characteristic notably not accessible in Metasploit and Cobalt Strike.
Strengthen Your SOC by Accelerating Menace Detection & Fast Investigations. -> Integrate ANY.RUN With Your SOC Now.








