High-risk tools in Zebbern Kali MCP

High severity Zebbern Kali MCP MCP Server 83 of 128 tools

83 of the 128 tools in Zebbern Kali MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

api_newman_run Execute

Run a Postman/Newman collection against API endpoints.
callback_start Execute

callback_start
callback_stop Execute

callback_stop
callback_wait Execute

callback_wait
msf_session_execute Execute

msf_session_execute
parse_tool_output Execute

parse_tool_output
payload_host_start Execute

Start HTTP server to host generated payloads for download.
payload_host_stop Execute

Stop the payload hosting server.
pivot_chisel_client Execute

Start a Chisel client to connect to a Chisel server.
pivot_chisel_server Execute

Start a Chisel server for tunneling.
pivot_ligolo_start Execute

Start a Ligolo-ng proxy server for pivoting.
pivot_stop_all_tunnels Execute

Stop all active tunnels and port forwards.
pivot_stop_tunnel Execute

Stop a specific tunnel.
reverse_shell_listener_start Execute

reverse_shell_listener_start
reverse_shell_stop Execute

Stop a reverse shell session.
ssh_session_start Execute

ssh_session_start
ssh_session_stop Execute

Stop/disconnect an SSH session.
tools_assetfinder Execute

Execute Assetfinder for asset discovery.
tools_byp4xx Execute

Execute byp4xx for 403 bypass testing.
tools_enum4linux Execute

Execute Enum4linux Windows/Samba enumeration tool.
tools_fierce Execute

Execute Fierce for DNS reconnaissance.
tools_httpx Execute

Execute httpx for HTTP probing.
tools_john Execute

Execute John the Ripper password cracker.
tools_subfinder Execute

Execute Subfinder for subdomain enumeration.
tools_subzy Execute

Execute Subzy for subdomain takeover detection.
tools_waybackurls Execute

Execute waybackurls to fetch URLs from Wayback Machine.
ad_asreproast Execute

Perform AS-REP Roasting to get hashes for accounts with pre-auth disabled.
ad_bloodhound_collect Execute

ad_bloodhound_collect
ad_kerberoast Execute

ad_kerberoast
ad_password_spray Execute

ad_password_spray
ad_psexec Execute

ad_psexec
ad_secretsdump Execute

ad_secretsdump
ad_wmiexec Execute

ad_wmiexec
api_auth_bypass_test Execute

Test for authentication bypass vulnerabilities.
api_ffuf_fuzz Execute

api_ffuf_fuzz
api_fuzz_endpoint Execute

api_fuzz_endpoint
api_graphql_fuzz Execute

Fuzz a GraphQL endpoint for vulnerabilities.
api_jwt_crack Execute

Attempt to crack a JWT token's signing secret.
api_kiterunner_scan Execute

Scan API endpoints using Kiterunner for route discovery.
api_nuclei_scan Execute

Run Nuclei templates against API endpoints.
api_rate_limit_test Execute

Test API rate limiting controls.
callback_check Execute

callback_check
callback_latest Execute

callback_latest
cve_search Execute

cve_search
exec_stream Execute

exec_stream
exploit_suggest_for_service Execute

Get exploit suggestions for a specific service.
exploit_suggest_from_nmap Execute

Analyze nmap scan output and suggest exploits for discovered services.
fingerprint_waf Execute

Detect Web Application Firewall (WAF) on a target URL.
payload_one_liner Execute

payload_one_liner
pivot_ssh_local Execute

pivot_ssh_local
pivot_ssh_remote Execute

pivot_ssh_remote
reverse_shell_command Execute

reverse_shell_command
reverse_shell_download_content Execute

Download file content from target via reverse shell and return as base64.
ssh_session_command Execute

ssh_session_command
tools_amass Execute

tools_amass
tools_arjun Execute

tools_arjun
tools_gobuster Execute

tools_gobuster
tools_gowitness Execute

tools_gowitness
tools_hydra Execute

tools_hydra
tools_katana Execute

tools_katana
tools_masscan Execute

tools_masscan
tools_nikto Execute

tools_nikto
tools_nmap Execute

tools_nmap
tools_sqlmap Execute

tools_sqlmap
tools_ssh_audit Execute

tools_ssh_audit
tools_sslscan Execute

tools_sslscan
tools_wpscan Execute

tools_wpscan
zebbern_exec Execute

zebbern_exec
callback_generate Execute

callback_generate
ctf_connect Execute

ctf_connect
msf_session_create Execute

Create a new persistent Metasploit (msfconsole) session.
payload_generate Execute

payload_generate
pivot_add_pivot Execute

pivot_add_pivot
pivot_generate_proxychains Execute

Generate a proxychains configuration for pivoting through SOCKS proxy.
pivot_socat_forward Execute

Create a socat port forward.
pivot_ssh_dynamic Execute

Create an SSH dynamic SOCKS proxy.
reverse_shell_generate_payload Execute

reverse_shell_generate_payload
reverse_shell_send_payload Execute

reverse_shell_send_payload
reverse_shell_upload_content Execute

reverse_shell_upload_content
send_input Execute

send_input
ssh_session_upload_content Execute

ssh_session_upload_content
vpn_connect Execute

vpn_connect
vpn_disconnect Execute

vpn_disconnect

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Zebbern Kali MCP

Tools at high risk

Attacks that target this class

More on Zebbern Kali MCP

Enforce policy on every Zebbern Kali MCP tool call.