v0.1.0 Alpha Release

Unleash Chaos on your
API Vulnerabilities

The agentic AI security tool that parses OpenAPI specs, plans intelligent attacks, and hunts down security flaws before hackers do.

Start Hacking Star Repository
chaos-kitten-cli
$chaos-kitten scan --target http://api.local
INFO 🧠 Brain initializing...
INFO 📋 Parsing OpenAPI spec... 12 endpoints found.
WARN 🧠 Planning attack strategies...
VULN 🚨 Reflected XSS found at GET /users
VULN 🚨 SQL Injection found at POST /login
INFO 📊 Report generated: reports/audit.html
$ _

Why Chaos Kitten?

OpenAPI Parsing

Forget manual configuration. Chaos Kitten natively parses your Swagger/OpenAPI specs to map every endpoint.

AI Attack Planning

Powered by LLMs, the brain understands business logic constraints and generates context-aware payloads.

Automated Reporting

Get instant, actionable insights. Reports are generated in HTML, JSON, and SARIF formats.

XSS Validation

Validates Reflected XSS attacks using a headless browser to ensure vulnerabilities are exploitable.

OpenAPI Parsing

Forget manual configuration. Chaos Kitten natively parses your Swagger/OpenAPI specs to map every endpoint.

AI Attack Planning

Powered by LLMs, the brain understands business logic constraints and generates context-aware payloads.

Automated Reporting

Get instant, actionable insights. Reports are generated in HTML, JSON, and SARIF formats.

XSS Validation

Validates Reflected XSS attacks using a headless browser to ensure vulnerabilities are exploitable.

Ready to pounce?

Install Chaos Kitten via pip and start your first scan in seconds.

# Install from PyPI (Coming soon)
git clone https://github.com/mdhaarishussain/chaos-kitten.git
cd chaos-kitten
pip install -e .

# Configure your environment
export ANTHROPIC_API_KEY=your_key_here

# Run a scan
chaos-kitten scan --target http://localhost:5000 --spec openapi.json
Read Full Documentation

Meet the Contributors

The talented people making Chaos Kitten possible