Kali

109 tools. 98 can modify or destroy data without limits.

98 write tools that can modify data. Rate limits recommended.

Last updated:

98 can modify or destroy data
11 read-only
109 tools total

Community server · catalogue entry verified 29/06/2026

How to control Kali ↓

What Kali exposes to your agents

Read (11) Write / Execute (98) Destructive / Financial (0)
High Risk

The most dangerous Kali tools

98 of Kali's 109 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control Kali

PolicyLayer is an MCP gateway — it sits between your AI agents and Kali, and nothing reaches the server without passing your rules. These are the rules we recommend:

Rate limit write operations
{
  "generate_consolidated_report": {
    "limits": [
      {
        "counter": "generate_consolidated_report_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "dirsearch_scan": {
    "limits": [
      {
        "counter": "dirsearch_scan_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register Kali — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON KALI →

Instant setup, no code required.

All 109 Kali tools

EXECUTE 96 tools
Execute aircrack_scan aircrack_scan Execute amass_scan Execute amass with the provided parameters. Execute apktool_decompile Execute Apktool APK decompiler. Execute arachni_scan Execute arachni with the provided parameters. Execute arjun_scan Execute arjun with the provided parameters. Execute autorecon_scan autorecon_scan Execute beef_exploit Execute BeEF browser exploitation framework. Execute cewl_generate cewl_generate Execute chkrootkit_scan Execute chkrootkit with the provided parameters. Execute clamav_scan Execute clamav with the provided parameters. Execute cloudsploit_scan cloudsploit_scan Execute cmsmap_scan Execute cmsmap with the provided parameters. Execute crawley_scan Execute Crawley web crawler. Execute crowbar_attack crowbar_attack Execute crunch_generate crunch_generate Execute dirb_scan Execute Dirb web content scanner. Execute dnsenum_scan Execute dnsenum with the provided parameters. Execute dnsrecon_scan Execute dnsrecon with the provided parameters. Execute droopescan_scan Execute droopescan with the provided parameters. Execute empire_exploit empire_exploit Execute enum4linux_scan Execute Enum4linux Windows/Samba enumeration tool. Execute execute_command Execute an arbitrary command on the Kali server. Execute feroxbuster_scan Execute feroxbuster with the provided parameters. Execute ffuf_scan ffuf_scan Execute fierce_scan Execute fierce with the provided parameters. Execute findomain_scan Execute findomain with the provided parameters. Execute firmwalker_scan firmwalker_scan Execute gau_scan Execute gau with the provided parameters. Execute gdb_analyze Execute GDB debugger. Execute ghidra_analyze Execute Ghidra reverse engineering framework. Execute gobuster_scan gobuster_scan Execute gophish_attack Execute GoPhish phishing framework. Execute gospider_scan Execute GoSpider web spider. Execute hakrawler_scan Execute Hakrawler web crawler. Execute hash_identifier_analyze Execute Hash-Identifier hash type analyzer. Execute hashcat_attack hashcat_attack Execute hydra_attack hydra_attack Execute iotseeker_scan Execute IoTSeeker IoT device scanner. Execute john_crack john_crack Execute johnny_attack Execute Johnny password cracker. Execute joomscan_scan Execute joomscan with the provided parameters. Execute js_scan_analyze Execute JS-Scan JavaScript analysis tool. Execute katana_scan Execute katana with the provided parameters. Execute lazyrecon_scan Execute LazyRecon reconnaissance framework. Execute lynis_scan Execute lynis with the provided parameters. Execute masscan_scan masscan_scan Execute medusa_attack medusa_attack Execute meg_scan Execute meg with the provided parameters. Execute metasploit_run Execute a Metasploit module. Execute mimikatz_attack Execute Mimikatz Windows credential extraction tool. Execute mobsf_analyze Execute MobSF mobile security framework. Execute naabu_scan Execute naabu with the provided parameters. Execute netcat_scan Execute Netcat network utility. Execute netdiscover_scan netdiscover_scan Execute netsparker_scan netsparker_scan Execute nikto_scan Execute Nikto web server scanner. Execute nmap_nse_scan Execute Nmap with NSE scripts. Execute nmap_scan nmap_scan Execute nuclei_scan Execute nuclei with the provided parameters. Execute ollydbg_analyze Execute OllyDbg debugger. Execute openvas_scan Execute OpenVAS vulnerability scanner. Execute pacu_attack Execute Pacu AWS exploitation framework. Execute paramspider_scan Execute paramspider with the provided parameters. Execute patator_attack patator_attack Execute photon_scan Execute Photon web crawler. Execute pipal_analyze pipal_analyze Execute powersploit_exploit powersploit_exploit Execute psexec_attack psexec_attack Execute reaver_attack reaver_attack Execute rkhunter_scan Execute rkhunter with the provided parameters. Execute rustscan_scan Execute rustscan with the provided parameters. Execute scout_suite_scan Execute Scout Suite cloud security scanner. Execute scrapy_crawl scrapy_crawl Execute secretfinder_scan Execute SecretFinder secret discovery tool. Execute set_attack Execute Social Engineer Toolkit. Execute skipfish_scan Execute skipfish with the provided parameters. Execute sn1per_scan Execute Sn1per penetration testing framework. Execute socat_connect socat_connect Execute sqlmap_scan Execute SQLmap SQL injection scanner. Execute subfinder_scan Execute subfinder with the provided parameters. Execute sublist3r_scan sublist3r_scan Execute traceroute_scan Execute Traceroute network diagnostic tool. Execute unicornscan_scan unicornscan_scan Execute vulmap_scan Execute vulmap with the provided parameters. Execute vulners_scan Execute Vulners vulnerability scanner. Execute wafw00f_scan Execute wafw00f with the provided parameters. Execute wapiti_scan Execute wapiti with the provided parameters. Execute wfuzz_scan wfuzz_scan Execute whatweb_scan Execute whatweb with the provided parameters. Execute wifiphisher_attack wifiphisher_attack Execute wifite_scan wifite_scan Execute winexe_attack winexe_attack Execute wireshark_capture wireshark_capture Execute wpscan_analyze Execute WPScan WordPress vulnerability scanner. Execute xsser_scan xsser_scan Execute zmap_scan Execute zmap with the provided parameters.

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about Kali

How do I prevent bulk modifications through Kali? +

The Kali server has 2 write tools including generate_consolidated_report, wordlists_manage. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Kali.

How many tools does the Kali MCP server expose? +

109 tools across 4 categories: Destructive, Execute, Read, Write. 11 are read-only. 98 can modify, create, or delete data.

How do I enforce a policy on Kali? +

Register the Kali MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Kali tool call.

Deterministic rules across all 109 Kali tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

109 Kali tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.