Blacksmith – AI powered penetration testing framework

Summary: BlacksmithAI is an open-source framework that automates penetration testing by orchestrating multiple AI agents through the entire security assessment lifecycle. It integrates professional tools within a Docker environment to perform reconnaissance, scanning, exploitation, and reporting, enabling automated vulnerability detection and validation.

What it does

BlacksmithAI uses specialized AI agents coordinated by an Orchestrator to execute penetration tests via CLI or Web UI. It automates tasks from discovery to exploitation using tools like nmap and sqlmap, and compiles detailed reports with findings and remediation advice.

Who it's for

It is designed for security engineers, DevOps teams, red teams, and developers seeking to proactively secure applications and infrastructure or learn about security assessments.

Why it matters

BlacksmithAI addresses the complexity and time requirements of professional penetration testing by providing an automated, scalable, and repeatable AI-driven solution in a controlled environment.