View Issue Details

IDProjectCategoryView StatusLast Update
0009764Kali LinuxNew Tool Requestspublic2026-06-30 15:51
ReporterRichardBarron27 Assigned Todaniruiz  
PrioritynormalSeverityminorReproducibilityhave not tried
Status feedbackResolutionreopened 
Summary0009764: specter-vicious-ce — AI-driven autonomous web application penetration testing
Description

Tool name: specter-vicious-ce

Homepage: https://red-specter.co.uk/specter-vicious-ce/

Source: https://github.com/RichardBarron27/specter-vicious-ce

License: Apache 2.0

Version: 1.0.0-ce (tagged release v1.0.0-ce)

Description:
AI-driven autonomous web application penetration testing tool. Uses DeepSeek R1 for attack reasoning and GPU-accelerated payload mutation via the PRION engine. First AI-native autonomous web app pentesting tool built for Kali Linux.

Dependencies:
python3, python3-requests, python3-click, ollama
GPU optional (CUDA) — degrades gracefully to CPU

Similar tools:
sqlmap — SQL injection only, no reasoning, no mutation
Burp Suite — manual proxy, no autonomous operation
Nuclei — template-based scanner, no AI reasoning
None provide AI-driven autonomous reasoning + GPU mutation.

How to install:
pip install specter-vicious-ce

How to use:
specter-vicious-ce --target https://example.com --gate INJECT --roe roe.json

Packaged:
Yes — debian/ directory included. Builds clean with debhelper on Kali Linux.

Development activity:
Active. v1.0.0-ce released 29 June 2026. Maintained by Red Specter Security Research Ltd.

Activities

daniruiz

daniruiz

2026-06-30 07:54

manager   ~0021797

Hello,

Thanks for your submission. We can’t package every infosec tool, so we prioritize those with wider adoption and community usage.

Best of luck with your project.

RichardBarron27

RichardBarron27

2026-06-30 15:51

reporter   ~0021801

Thanks for the feedback. I understand the adoption threshold.

To build exactly that — wider community adoption — we're now releasing the full suite of five AI-native Kali challengers as open source:

  • SPECTER AINTERNET CE → Nmap (AI agent network recon)
  • SPECTER VICIOUS CE → Metasploit (autonomous exploitation)
  • SPECTER LITESTRIKE CE → Burp Suite (AI gateway exploitation)
  • SPECTER RAGSTRIKE CE → sqlmap (vector DB/RAG exploitation)
  • SPECTER GHOST CE → Hydra (NHI fleet credential exploitation)

We're committed to building community adoption and will resubmit once metrics reflect wider usage. Appreciate the consideration.

Richard
Red Specter Security Research

Issue History

Date Modified Username Field Change
2026-06-29 14:22 RichardBarron27 New Issue
2026-06-30 07:54 daniruiz Note Added: 0021797
2026-06-30 07:54 daniruiz Assigned To => daniruiz
2026-06-30 07:54 daniruiz Status new => closed
2026-06-30 07:54 daniruiz Resolution open => won't fix
2026-06-30 15:51 RichardBarron27 Status closed => feedback
2026-06-30 15:51 RichardBarron27 Resolution won't fix => reopened
2026-06-30 15:51 RichardBarron27 Note Added: 0021801