High-risk tools in Ludus FastMCP
32 of the 201 tools in Ludus FastMCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
abort_template_buildExecuteAbort a template build. Args: template_id: Template ID user_id: Optional user ID (admin only) Returns: Abort result
-
build_container_based_templateExecutebuild_container_based_template
-
build_range_from_descriptionExecutebuild_range_from_description
-
build_range_from_promptExecuteBuild a range configuration from a natural language prompt. Args: prompt: Natural language description of desired range auto_deploy: Automatical...
-
build_range_from_scratchExecutebuild_range_from_scratch
-
build_range_from_skeletonExecutebuild_range_from_skeleton
-
build_templateExecuteBuild a template. Args: template_id: Template ID to build force: Force rebuild even if template exists user_id: Optional user ID (ad...
-
deploy_rangeExecutedeploy_range
-
deploy_scenarioExecutedeploy_scenario
-
health_checksExecuteRun health checks on all VMs in the range. Args: user_id: Optional user ID (admin only) Returns: Health check results for all VMs
-
interactive_build_rangeExecuteInteractively build a range using natural language prompts. Args: prompt: Natural language description of desired range user_id: Optional user I...
-
security_auditExecuteRun security audit on the range. Args: user_id: Optional user ID (admin only) Returns: Security audit report
-
smart_deployExecuteSmart deployment with validation, optional snapshot, and auto-monitoring. RECOMMENDED: This is the preferred method for deploying scenarios as it includes ...
-
start_testingExecuteStart testing state for the range. Args: user_id: Optional user ID (admin only) Returns: Testing start result
-
stop_testingExecuteStop testing state for the range. Args: user_id: Optional user ID (admin only) Returns: Testing stop result
-
batch_power_on_hostsExecutebatch_power_on_hosts
-
batch_snapshot_hostsExecutebatch_snapshot_hosts
-
optimize_resource_allocationExecuteOptimize resource allocation for the range. Args: user_id: Optional user ID (admin only) Returns: Optimization recommendations and appl...
-
power_off_rangeExecutePower off all VMs in the range. Args: user_id: Optional user ID (admin only) Returns: Power off result
-
power_on_rangeExecutePower on all VMs in the range. Args: user_id: Optional user ID (admin only) Returns: Power on result
-
test_network_connectivityExecuteTest network connectivity between VMs. Args: source_vm: Source VM name target_vm: Target VM name protocol: Protocol to test (tcp, ud...
-
apply_adversary_profileExecuteapply_adversary_profile
-
apply_blueprint_to_rangeExecuteApply a blueprint to a range. Args: blueprint_id: ID of the blueprint to apply range_id: ID of the range to apply the blueprint to Retu...
-
apply_defender_profileExecuteapply_defender_profile
-
git_syncExecuteSync range configurations with Git repository. Args: action: Action to perform (configure, sync, status) repo_url: Git repository URL ...
-
install_galaxy_roleExecuteinstall_galaxy_role
-
install_roleExecuteinstall_role
-
install_role_from_urlExecuteinstall_role_from_url
-
migrate_sqlite_to_pocketbaseExecuteMigrate from SQLite to PocketBase. Returns: Migration result
-
migrate_to_sdnExecuteMigrate to SDN networking. Returns: SDN migration result
-
schedule_range_tasksExecuteSchedule recurring tasks for the range. Args: tasks: List of tasks to schedule schedule: Cron expression for scheduling user_id: Opt...
-
setup_sdnExecuteSetup SDN infrastructure. Returns: SDN setup result
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.