High-risk tools in IT Tools MCP Server

High severity IT Tools MCP Server MCP Server 10 of 119 tools

10 of the 119 tools in IT Tools MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

curl Execute

Make HTTP requests to web endpoints. Example: GET request to an API or POST data to a server
test_regex Execute

Test regular expressions against text
decrypt_ansible_vault Execute

Decrypt Ansible Vault encrypted text
dig Execute

Perform DNS lookup with dig command
evaluate_math Execute

Safely evaluate mathematical expressions
generate_otp Execute

Generate Time-based One-Time Password (TOTP) codes
hash_bcrypt Execute

Generate bcrypt hash or verify password against hash
ping Execute

Test network connectivity to a host. Example: ping google.com to check if it
ssh Execute

Connect to a target via SSH
telnet Execute

Test TCP connectivity to a host and port

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in IT Tools MCP Server

Tools at high risk

Attacks that target this class

More on IT Tools MCP Server

Enforce policy on every IT Tools MCP Server tool call.