Technology

U.S.-based Nigerian tech talent aims to protect global workflows with XPLOIT

U.S.-based Nigerian tech talent aims to protect global workflows with XPLOIT

By Prince Osuagwu

Artificial intelligence, AI, agents are rapidly moving from experimental tools to autonomous digital workers.


These autonomous digital workers are capable of handling financial transactions, infrastructure management and customer support.


And, so, cybersecurity experts are warning that the next global security crisis may not come from humans alone, but from vulnerable AI systems acting on behalf of humans.


This warning has caused growing concerns that have inspired several inventions and innovations.
Part of these inventions is the cybersecurity testing platform called Xploit , developed by a 23-year-old United States-based Nigerian tech developer, Tony Okeke.


Along with his team of innovators comprising Kamdi Okeke, Kiitan Fawole, Dalu Okonkwo and Michael Moemeke, all students and alumni of Drexel University Okeke designed the platform in a way that it can expose weaknesses in AI agents before cybercriminals can exploit them.


They developed the platform during the “Start-Up In a Weekend” Hackathon hosted in Philadelphia, November 2025, by The Foundry and Velric.


According to the team, their solution, which actually began as a brainstorming session, quickly evolved into one of the competition’s most talked-about innovations.


Okeke said: “The rise of AI-powered agents capable of taking independent actions on behalf of businesses has fundamentally changed the cybersecurity landscape.


“So, the idea behind Xploit is simple but ambitious: create an automated digital attacker capable of continuously probing AI systems for vulnerabilities the same way hackers would, only before the real attacks happen. As more businesses deploy AI agents that can take actions and use tools on behalf of customers, these systems become potential security risks. Unlike simple AI assistants, agents have access to tools and can perform real actions. A vulnerability is no longer just a PR problem; it could have serious real-world consequences,” he added.


Truly, across global enterprises, AI agents are increasingly being deployed to automate sensitive processes ranging from infrastructure monitoring to financial analysis and customer engagement. However, while large corporations can afford dedicated AI security teams, small and medium-sized businesses remain dangerously exposed; and that is the market gap Xploit is attempting to fill.


The team positioned the solution within the rapidly emerging continuous automated red-teaming market, projected to rise from about $495 million in 2024 to nearly $4.9 billion by 2032. Their argument was that AI safety testing should not be reserved only for tech giants.


At the heart of Xploit is a strategic attack engine. The system behaves like an intelligent game player. It selects an attack strategy, formulates an execution plan, interacts with target AI systems step-by-step and analyzes responses in real time to determine whether to continue or switch tactics.


What particularly impressed judges at the hackathon was not just the sophistication of the product, but the speed at which it was built.


It is said that Okeke designed the architecture and initial user interface prototype, while other team members handled infrastructure integration, interface refinement and creation of sample AI agents that served as testing targets.


The user interface itself became one of the product’s standout features. Through interactive visual graphs, users could watch the automated attacker think, strategize and attempt multiple attack paths in real time.
During the final pitch session, judges demanded access to the team’s codebase and development history for verification and thereafter declared them winner of the competition’s “New Project Track” category with a $1,500 prize.


For Kamdi Okeke, however, the real achievement went beyond the prize money.


“What made the achievement remarkable wasn’t just that we built it over a weekend. Competing among over 100 of Philadelphia’s most driven creators, we transformed an abstract idea into a polished working prototype in less than one day of actual development time,” he said.


Months later, the team participated in another Philadelphia-based innovation competition hosted by United Effects Ventures between March 12 and 14, 2026.


At the event, known as Venture Building Weekend, the developers refined Xploit’s business model with support from operators and investors focused on product-market validation and go-to-market execution.
Again, Xploit outperformed 15 competing teams, securing another cash prize alongside two advisory sessions with venture partners.


According to Tony, the mentorship received during the programme helped sharpen their understanding of both the market and the scalability of the product.


“The mentorship and feedback helped validate our focus on continuous red-teaming as a practical approach to discovering vulnerabilities in AI-powered systems,” he noted.


For many observers, the story of Xploit represents something bigger than another hackathon success story. It highlights the growing emergence of young African tech talents contributing to some of the world’s most critical conversations around AI safety, cybersecurity and digital trust infrastructure.
At a time when governments and enterprises globally are struggling to balance rapid AI adoption with security concerns, innovations like Xploit may soon become essential tools in the next generation of enterprise defense systems.