China-Linked AI Pentest Tool ‘Villager’ Raises Concern After 10K Downloads

A new penetration testing tool called Villager, released on the Python Package Index (PyPI) by a former Chinese capture-the-flag (CTF) competitor, is now catching interest from security researchers. While marketed as a red teaming tool, experts warn that its automation capabilities and open availability may allow threat actors to use it maliciously.

According to cybersecurity firm Straiker, which first spotted the tool, Villager was published as a public Python package in late July 2025 by a user named stupidfish001, linked to the Chinese group HSCSEC, and now connected with a company known as Cyberspike. In the two months since its release, Villager has been downloaded more than 10,000 times across Linux, macOS and Windows environments.

According to researchers from Straiker, the pattern looks a lot like what happened with Cobalt Strike, a legitimate red teaming solution that was repurposed by cybercriminals and nation-state groups.

Generative AI Features

However, Villager ...