CyPerf MCP Server

100 tools. 52 can modify or destroy data without limits.

12 destructive tools with no built-in limits. Policy required.

Last updated:

52 can modify or destroy data
48 read-only
100 tools total

Community server · catalogue entry verified 02/07/2026

How to control CyPerf MCP Server ↓

What CyPerf MCP Server exposes to your agents

Read (48) Write / Execute (39) Destructive / Financial (12)
Critical Risk

The most dangerous CyPerf MCP Server tools

52 of CyPerf MCP Server's 100 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control CyPerf MCP Server

PolicyLayer is an MCP gateway — it sits between your AI agents and CyPerf MCP Server, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations
{
  "agents_delete": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "agents_release": {
    "limits": [
      {
        "counter": "agents_release_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "agents_export_files": {
    "limits": [
      {
        "counter": "agents_export_files_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register CyPerf MCP Server — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON CYPERF →

Instant setup, no code required.

All 100 CyPerf MCP Server tools

WRITE 29 tools
Write agents_release [Agents] Release reserved agents. Write agents_set_ntp [Agents] Set NTP configuration on agents. Write agents_update [Agents] Update agent properties. Write brokers_manage brokers_manage Write certs_generate [Certificates] Generate a new certificate. Write certs_upload [Certificates] Upload a certificate to the cert manager. Write configs_import [Configurations] Import configuration(s) from a local file. Write configs_update [Configurations] Update configuration metadata. Write controllers_set_aggregation [Controllers] Set node aggregation mode. Write controllers_set_app [Controllers] Set application on a controller. Write licensing_manage_server licensing_manage_server Write migration_export [Migration] Export controller data for migration. Write migration_import [Migration] Import controller data from a migration package. Write notifications_manage [Notifications] Manage notifications in bulk. Write results_generate_report [Results] Generate a report for a test result. Write sessions_add_applications sessions_add_applications Write sessions_add_attacks sessions_add_attacks Write sessions_assign_agents sessions_assign_agents Write sessions_create [Sessions] Create a new CyPerf session. Write sessions_disable_automatic_network [Sessions] Disable automatic IP assignment on all network segments. Write sessions_load_config [Sessions] Load a configuration into a session. Write sessions_rename_network_segments [Sessions] Rename network segments in a session. Write sessions_save_config sessions_save_config Write sessions_set_app_action_param sessions_set_app_action_param Write sessions_set_network_ip_range sessions_set_network_ip_range Write sessions_set_objective_and_timeline sessions_set_objective_and_timeline Write sessions_update [Sessions] Update session properties. Write stats_ingest [Statistics] Ingest external statistics via a plugin. Write system_eula [System] Check or accept the End User License Agreement.
READ 48 tools
Read agents_export_files [Agents] Export agent files (logs, configs, etc.). Read agents_get [Agents] Get details of a specific CyPerf agent by ID. Read agents_list agents_list Read agents_reserve [Agents] Reserve agents for testing. Read agents_tags [Agents] List agent tags. Read brokers_list [Brokers] List all brokers. Read certs_list [Certificates] List certificates managed by the cert manager. Read configs_categories [Configurations] List configuration categories. Read configs_export_all [Configurations] Export configurations. If config_ids given, exports those; otherwise all. Read configs_list configs_list Read controllers_get [Controllers] Get controller details by ID. Read controllers_list [Controllers] List all controllers. Read controllers_nodes controllers_nodes Read controllers_ports controllers_ports Read diagnostics_export [Diagnostics] Export diagnostics. Optionally filter by component names. Read diagnostics_list_components [Diagnostics] List diagnostic components available for export. Read licensing_activation [Licensing] Activate or deactivate a license. Read licensing_get_code_info [Licensing] Get information about an activation or entitlement code. Read licensing_get_feature_stats [Licensing] Get counted feature statistics for licenses. Read licensing_get_hostid [Licensing] Get the host ID for licensing. Read licensing_get_license [Licensing] Get license details by ID. Read licensing_list_licenses [Licensing] List all installed licenses. Read licensing_list_servers [Licensing] List license servers. Read notifications_get [Notifications] Get notification details by ID. Read notifications_get_counts [Notifications] Get notification counts by type/severity. Read notifications_list [Notifications] List notifications. Read resources_list_apps resources_list_apps Read resources_list_attacks resources_list_attacks Read resources_search resources_search Read results_download_config [Results] Download the configuration used for a test result. Read results_files results_files Read results_get [Results] Get test result details by ID. Read results_list results_list Read results_stats results_stats Read results_tags [Results] List result tags. Read sessions_get [Sessions] Get details of a specific session by ID. Read sessions_get_app_actions [Sessions] List actions for an application in a session's traffic profile. Read sessions_get_applications [Sessions] List applications in a session's traffic profile. Read sessions_get_attacks [Sessions] List attacks in a session's attack profile. Read sessions_get_config sessions_get_config Read sessions_get_meta [Sessions] Get session metadata. Read sessions_get_network_segments [Sessions] List network segments with their IP range settings. Read sessions_get_test [Sessions] Get session test info (status, progress, etc.). Read sessions_list sessions_list Read stats_plugins stats_plugins Read system_disk_usage system_disk_usage Read system_get_time [System] Get the CyPerf server time. Read system_log_config system_log_config

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about CyPerf MCP Server

Can an AI agent delete data through the CyPerf MCP Server MCP server? +

Yes. The CyPerf MCP Server server exposes 12 destructive tools including agents_delete, configs_delete, controllers_clear_ports. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through CyPerf MCP Server? +

The CyPerf MCP Server server has 29 write tools including agents_release, agents_set_ntp, agents_update. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach CyPerf MCP Server.

How many tools does the CyPerf MCP Server MCP server expose? +

100 tools across 3 categories: Destructive, Read, Write. 48 are read-only. 52 can modify, create, or delete data.

How do I enforce a policy on CyPerf MCP Server? +

Register the CyPerf MCP Server MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every CyPerf MCP Server tool call.

Deterministic rules across all 100 CyPerf MCP Server tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

100 CyPerf MCP Server tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.