// SCAN REPORT

Kali Linux MCP Server

5 tools. 4 can modify or destroy data without limits.

4 write tools that can modify data. Rate limits recommended.

Last updated: 11 Jun 2026

4 can modify or destroy data

1 read-only

5 tools total

Community server · catalogue entry verified 11/06/2026

How to control Kali Linux MCP Server ↓

TOOL MAP

Read (1) Write / Execute (4) Destructive / Financial (0)

MOST DANGEROUS TOOLS

High Risk

Execute · Critical start_interactive_command This tool directly executes arbitrary commands in a Kali Linux environment with persistence (session ID). Execute · Critical execute_command This tool allows unrestricted execution of arbitrary commands in a full penetration testing OS (Kali Linux). Execute · High close_interactive_command This tool closes an interactive command session on a Kali Linux penetration testing server. Execute · Critical send_input_to_command This tool sends arbitrary input to running interactive commands on a Kali Linux penetration testing server.

4 of Kali Linux MCP Server's 5 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

HOW TO CONTROL KALI LINUX MCP SERVER

PolicyLayer is an MCP gateway — it sits between your AI agents and Kali Linux MCP Server, and nothing reaches the server without passing your rules. These are the rules we recommend:

Cap read operations

{
  "get_command_output": {
    "limits": [
      {
        "counter": "get_command_output_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

Create a free account and register Kali Linux MCP Server — nothing to install.
Add these rules — paste them, or build them visually. Tune the limits to your setup.
Point your MCP client (Claude, Cursor, anything) at your gateway URL.

ENFORCE POLICY ON KALI LINUX →

Free to start. No card required.

ALL 5 KALI LINUX MCP SERVER TOOLS

EXECUTE 4 tools

Execute execute_command (无需交互式比如ping 127.0.0.1)在Kali Linux渗透测试环境中执行命令。支持所有Kali Linux内置的安全测试工具和常规Linux命令。 Execute start_interactive_command (需要交互式比如mysql -u root -p)在Kali Linux环境中启动一个交互式命令，并返回会话ID。交互式命令可以接收用户输入,可以在不close_interactive_command的情况下同时执行ex Execute close_interactive_command 关闭交互式命令会话。 Execute send_input_to_command (自行判断是AI输入还是用户手动输入)向正在运行的交互式命令发送用户输入。

READ 1 tools

Read get_command_output 获取交互式命令的最新输出。

RELATED SERVERS

Other MCP servers with similar tools — same risk classification, starter policies for each.

FAQ

Is the Kali Linux MCP Server MCP server safe to use without restrictions? +

The Kali Linux MCP Server server is primarily read-only with 1 read tools. While it cannot modify data, an agent in a retry loop can make thousands of API calls per minute, exhausting rate limits and running up costs. Rate limiting is still recommended.

How many tools does the Kali Linux MCP Server MCP server expose? +

5 tools across 3 categories: Execute, Read, Write. 1 are read-only. 4 can modify, create, or delete data.

How do I enforce a policy on Kali Linux MCP Server? +

Register the Kali Linux MCP Server MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Kali Linux MCP Server tool call.

Deterministic rules across all 5 Kali Linux MCP Server tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON KALI LINUX →

Free to start. No card required.

5 Kali Linux MCP Server tools catalogued and risk-classified — across an index of 42,500+ MCP servers.

Kali Linux MCP Server

// TOOL MAP

// MOST DANGEROUS TOOLS

// HOW TO CONTROL KALI LINUX MCP SERVER

// ALL 5 KALI LINUX MCP SERVER TOOLS

// RELATED SERVERS

// FAQ