Critical-risk tools in Cobalt Strike MCP Server
19 of the 220 tools in Cobalt Strike MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
beacon_delete_fileDestructiveDelete a file or directory on a beacon
-
clear_beacon_command_queueDestructiveClear the command queue for a beacon
-
delete_credentialDestructiveDelete a credential from the teamserver
-
delete_listenerDestructiveDelete/remove a listener from the teamserver
-
delete_listener_dnsDestructiveDelete a DNS listener
-
delete_listener_externalC2DestructiveDelete an ExternalC2 listener
-
delete_listener_foreignHttpDestructiveDelete a Foreign HTTP listener
-
delete_listener_foreignHttpsDestructiveDelete a Foreign HTTPS listener
-
delete_listener_httpDestructiveDelete an HTTP listener
-
delete_listener_httpsDestructiveDelete an HTTPS listener
-
delete_listener_smbDestructiveDelete an SMB listener
-
delete_listener_tcpDestructiveDelete a TCP listener
-
delete_listener_userDefinedC2DestructiveDelete a User-Defined C2 listener
-
execute_kerberos_ticket_purgeDestructivePurge Kerberos tickets
-
execute_socks_stop_allDestructiveStop all SOCKS proxies
-
execute_tokenStore_removeDestructiveRemove a token from the token store
-
execute_tokenStore_removeAllDestructiveRemove all tokens from the token store
-
kill_beaconDestructiveKill/remove a beacon from the teamserver
-
reset_dataDestructiveReset teamserver data
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.