MCP Kali Pentest

61 tools. 40 can modify or destroy data without limits.

40 write tools that can modify data. Rate limits recommended.

Last updated:

40 can modify or destroy data
21 read-only
61 tools total

Community server · catalogue entry verified 29/06/2026

How to control MCP Kali Pentest ↓

What MCP Kali Pentest exposes to your agents

Read (21) Write / Execute (40) Destructive / Financial (0)
High Risk

The most dangerous MCP Kali Pentest tools

40 of MCP Kali Pentest's 61 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control MCP Kali Pentest

PolicyLayer is an MCP gateway — it sits between your AI agents and MCP Kali Pentest, and nothing reaches the server without passing your rules. These are the rules we recommend:

Rate limit write operations
{
  "generate_report": {
    "limits": [
      {
        "counter": "generate_report_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "amass_enum": {
    "limits": [
      {
        "counter": "amass_enum_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register MCP Kali Pentest — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON MCP KALI PENTEST →

Instant setup, no code required.

All 61 MCP Kali Pentest tools

EXECUTE 39 tools
Execute aircrack_suite Complete aircrack-ng workflow for WPA/WEP cracking. Execute bettercap Swiss Army knife for WiFi, Bluetooth, and Ethernet networks reconnaissance and attacks. Execute binwalk_extract Firmware analysis tool for extracting embedded files and code. Execute bloodhound_ingest Active Directory attack path analysis. Identifies privilege escalation paths. Execute burpsuite_scan Burp Suite Professional automated scanner. Requires Burp Suite Pro license and REST API. Execute cloudfox_enum AWS enumeration and privilege escalation tool. Execute commix Automated command injection exploitation tool. Execute crackmapexec Post-exploitation tool for Active Directory environments. Supports SMB, MSSQL, SSH, WinRM. Execute dirbuster Multi-threaded Java application designed to brute force directories and files. Execute droopescan Drupal and SilverStripe security scanner. Execute drozer_scan Android security assessment framework for app testing. Execute ffuf_fuzz Fast web fuzzer for discovering paths, parameters, and vulnerabilities. Execute frida_trace Dynamic instrumentation toolkit for reverse engineering mobile apps. Execute gobuster_scan Directory and file brute-forcing tool. Discovers hidden paths and files on web servers. Execute graphql_scanner GraphQL security scanner checking for introspection, injection, and misconfiguration. Execute hashcat_crack Advanced password recovery using GPU acceleration. Execute hydra_bruteforce Network login brute-force tool. Supports SSH, FTP, HTTP, RDP, and many other protocols. Execute john_crack John the Ripper password cracker. Cracks password hashes using wordlists and rules. Execute joomscan Joomla vulnerability scanner detecting version, modules, and security issues. Execute kismet_scan Wireless network and device detector, sniffer, and intrusion detection system. Execute linpeas Linux privilege escalation awesome script. Automated enumeration. Execute masscan_scan Ultra-fast port scanner capable of scanning the entire Internet in minutes. Much faster than Nmap for large-sc Execute mobsf_scan Mobile Security Framework - Android/iOS app security scanner. Execute nikto_scan Web server vulnerability scanner. Checks for outdated software, dangerous files, and misconfigurations. Execute nmap_scan Advanced port scanning and service detection using Nmap. Supports TCP/UDP, OS detection, script scanning, and Execute nuclei_scan Fast vulnerability scanner using templates. Detects CVEs, misconfigurations, and security issues. Execute owasp_zap_scan OWASP ZAP automated security scanner. Performs active and passive scanning of web applications. Execute postman_scan API testing with Postman/Newman. Run collections for API security testing. Execute radare2_analyze Open-source reverse engineering framework and disassembler. Execute reaver WPS (Wi-Fi Protected Setup) brute-force attack tool. Execute sqlmap_scan Automated SQL injection detection and exploitation. Tests for SQLi vulnerabilities and can extract database co Execute ssrf_detector Server-Side Request Forgery (SSRF) vulnerability detection. Execute start_autonomous_pentest Start a fully autonomous penetration test. The AI will make decisions and suggest next steps automatically. Execute vulnerability_assessment Comprehensive vulnerability assessment using multiple tools and AI analysis. Execute wfuzz Advanced web application fuzzer for discovering hidden resources and parameters. Execute wifite Automated wireless auditor. Automatically attacks multiple WEP, WPA, and WPS encrypted networks. Execute winpeas Windows privilege escalation awesome script. Automated enumeration. Execute wpscan WordPress vulnerability scanner. Detects vulnerable plugins, themes, and WordPress core issues. Execute xsstrike Advanced XSS (Cross-Site Scripting) detection and exploitation suite.
READ 21 tools
Read amass_enum Advanced subdomain enumeration using OSINT, brute-forcing, and DNS techniques. Read dirb Web content scanner looking for hidden web objects. Read dns_enum DNS enumeration and subdomain discovery. Finds subdomains, DNS records, and zone transfers. Read docker_bench_security Docker security best practices checker based on CIS benchmark. Read enum4linux Enumerate SMB shares, users, and groups on Windows/Samba systems. Read get_ai_suggestion Get AI-powered suggestions for next steps based on current findings. Read metasploit_search Search Metasploit database for exploits and modules. Read recon_ng Full-featured reconnaissance framework with modules for OSINT gathering. Read scout_suite Multi-cloud security auditing tool for AWS, Azure, GCP, and more. Read searchsploit Search Exploit-DB for known exploits and vulnerabilities. Read shodan_search Search Shodan for exposed devices and services. Read snmp_check SNMP enumeration tool. Extracts system information via SNMP. Read ssl_scan SSL/TLS configuration analyzer. Checks for weak ciphers, certificate issues, and vulnerabilities. Read strings_extract Extract printable strings from binary files. Read tcpdump_capture Capture network packets for analysis. Read theHarvester Email addresses, subdomains, and hosts harvester from public sources. Read trivy_scan Container vulnerability scanner for Docker images and file systems. Read volatility_analyze Advanced memory forensics framework for RAM dump analysis. Read wafw00f Web Application Firewall (WAF) detection and identification. Read whatweb Web technology fingerprinting tool. Identifies CMS, frameworks, JavaScript libraries, and more. Read wireshark_analyze Network protocol analyzer for packet inspection.

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about MCP Kali Pentest

How do I prevent bulk modifications through MCP Kali Pentest? +

The MCP Kali Pentest server has 1 write tools including generate_report. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach MCP Kali Pentest.

How many tools does the MCP Kali Pentest MCP server expose? +

61 tools across 3 categories: Execute, Read, Write. 21 are read-only. 40 can modify, create, or delete data.

How do I enforce a policy on MCP Kali Pentest? +

Register the MCP Kali Pentest MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every MCP Kali Pentest tool call.

Deterministic rules across all 61 MCP Kali Pentest tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

61 MCP Kali Pentest tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.