// MCP TOOL REFERENCE

PENTESTER-MCP TOOLS

337 tools from the Pentester-MCP MCP Server, categorised by risk level.

View the Pentester-MCP policy →
// ALL 337 PENTESTER-MCP TOOLS
READ 4 tools
Read run_impacket_registry_read run_impacket_registry_read Read analyze_pcap analyze_pcap Read list_nikto_plugins Lists all available plugins that Nikto can use to perform security checks. Read wapiti_get_cookie wapiti_get_cookie
EXECUTE 332 tools
Execute dnscat_client dnscat_client Execute execute_weevely_module execute_weevely_module Execute identify_hash identify_hash Execute john_prepare john_prepare Execute launch_xsser_gui Launches the graphical user interface (GTK) for XSSer. Execute objection_explore objection_explore Execute run_403bypasser run_403bypasser Execute run_addcomputer run_addcomputer Execute run_aircrack_action run_aircrack_action Execute run_aix run_aix Execute run_alterx run_alterx Execute run_amass run_amass Execute run_apktool run_apktool Execute run_arachni run_arachni Execute run_arjun run_arjun Execute run_asnmap run_asnmap Execute run_atexec run_atexec Execute run_autobloody run_autobloody Execute run_autorecon run_autorecon Execute run_awk run_awk Execute run_bbot run_bbot Execute run_binwalk run_binwalk Execute run_bloodhound run_bloodhound Execute run_bloodhound_automation run_bloodhound_automation Execute run_bloodyad run_bloodyad Execute run_bruteforce_luks run_bruteforce_luks Execute run_bruteshark_analysis run_bruteshark_analysis Execute run_cariddi run_cariddi Execute run_cdncheck run_cdncheck Execute run_cero run_cero Execute run_certipy run_certipy Execute run_cewl run_cewl Execute run_changeme run_changeme Execute run_cloud_enum run_cloud_enum Execute run_cloudlist run_cloudlist Execute run_coercer run_coercer Execute run_commix run_commix Execute run_corsy run_corsy Execute run_crlfuzz run_crlfuzz Execute run_crunch run_crunch Execute run_cupp run_cupp Execute run_curl run_curl Execute run_dacledit run_dacledit Execute run_dalfox run_dalfox Execute run_describe_ticket run_describe_ticket Execute run_dig run_dig Execute run_dirb run_dirb Execute run_dirsearch run_dirsearch Execute run_dirstalk run_dirstalk Execute run_dmitry run_dmitry Execute run_dnsenum run_dnsenum Execute run_dnsrecon run_dnsrecon Execute run_dnsx run_dnsx Execute run_docker run_docker Execute run_dotdotpwn run_dotdotpwn Execute run_dpapi run_dpapi Execute run_dpl4hydra run_dpl4hydra Execute run_drupwn run_drupwn Execute run_dump_ntlm_info run_dump_ntlm_info Execute run_emailharvester run_emailharvester Execute run_enum4linux_ng run_enum4linux_ng Execute run_eyewitness run_eyewitness Execute run_fatcat run_fatcat Execute run_fcrackzip run_fcrackzip Execute run_feroxbuster run_feroxbuster Execute run_ffuf run_ffuf Execute run_fierce run_fierce Execute run_finalrecon run_finalrecon Execute run_find run_find Execute run_find_delegation run_find_delegation Execute run_findomain run_findomain Execute run_fping run_fping Execute run_gaia run_gaia Execute run_gau run_gau Execute run_get_ad_computers run_get_ad_computers Execute run_get_gpppassword run_get_gpppassword Execute run_getadusers run_getadusers Execute run_getnpusers run_getnpusers Execute run_getpac run_getpac Execute run_getst run_getst Execute run_getuserspns run_getuserspns Execute run_ghauri run_ghauri Execute run_git run_git Execute run_gitleaks run_gitleaks Execute run_gobuster run_gobuster Execute run_goldenpac run_goldenpac Execute run_gospider run_gospider Execute run_gowitness run_gowitness Execute run_graphw00f run_graphw00f Execute run_grep run_grep Execute run_gunzip run_gunzip Execute run_hakrawler run_hakrawler Execute run_hashcat run_hashcat Execute run_hashdeep run_hashdeep Execute run_hashid run_hashid Execute run_httpx run_httpx Execute run_hydra run_hydra Execute run_impacket_changepasswd run_impacket_changepasswd Execute run_impacket_dcomexec run_impacket_dcomexec Execute run_impacket_esentutl run_impacket_esentutl Execute run_impacket_exchanger run_impacket_exchanger Execute run_impacket_getarch run_impacket_getarch Execute run_impacket_getlapspassword run_impacket_getlapspassword Execute run_impacket_gettgt run_impacket_gettgt Execute run_impacket_keylistattack run_impacket_keylistattack Execute run_impacket_mimikatz run_impacket_mimikatz Execute run_impacket_mssqlinstance run_impacket_mssqlinstance Execute run_impacket_net run_impacket_net Execute run_impacket_ping run_impacket_ping Execute run_impacket_ping6 run_impacket_ping6 Execute run_impacket_reg run_impacket_reg Execute run_impacket_services run_impacket_services Execute run_impacket_tstool run_impacket_tstool Execute run_jadx run_jadx Execute run_john run_john Execute run_joomscan run_joomscan Execute run_jwt_tool run_jwt_tool Execute run_k8scan run_k8scan Execute run_katana run_katana Execute run_kerbrute run_kerbrute Execute run_kiterunner run_kiterunner Execute run_kubectl run_kubectl Execute run_kubernetes_task run_kubernetes_task Execute run_lookupsid run_lookupsid Execute run_lsassy run_lsassy Execute run_machine_role run_machine_role Execute run_mapcidr run_mapcidr Execute run_masscan run_masscan Execute run_medusa run_medusa Execute run_mqtt_check run_mqtt_check Execute run_msfconsole run_msfconsole Execute run_msfvenom run_msfvenom Execute run_mssqlclient run_mssqlclient Execute run_naabu run_naabu Execute run_nbtscan run_nbtscan Execute run_ndiff run_ndiff Execute run_netcat_client run_netcat_client Execute run_netdiscover_scan run_netdiscover_scan Execute run_nikto_scan run_nikto_scan Execute run_nmap run_nmap Execute run_nmapautomator run_nmapautomator Execute run_nping run_nping Execute run_npm run_npm Execute run_ntfs_read run_ntfs_read Execute run_nuclei run_nuclei Execute run_nxc run_nxc Execute run_onesixtyone run_onesixtyone Execute run_openredirex run_openredirex Execute run_owneredit run_owneredit Execute run_pacu run_pacu Execute run_paramspider run_paramspider Execute run_passdetective run_passdetective Execute run_php run_php Execute run_phpsploit run_phpsploit Execute run_plumhound run_plumhound Execute run_psexec run_psexec Execute run_pw_inspector run_pw_inspector Execute run_pwncat_scan run_pwncat_scan Execute run_pywhisker run_pywhisker Execute run_qsfuzz run_qsfuzz Execute run_qsreplace run_qsreplace Execute run_raise_child run_raise_child Execute run_rbcd run_rbcd Execute run_rdp_check run_rdp_check Execute run_recon_ng run_recon_ng Execute run_rpcclient run_rpcclient Execute run_rpcmap run_rpcmap Execute run_sambapipe run_sambapipe Execute run_scp run_scp Execute run_searchsploit run_searchsploit Execute run_sherlock run_sherlock Execute run_shuffledns run_shuffledns Execute run_sliver_action run_sliver_action Execute run_smbclient run_smbclient Execute run_smbexec run_smbexec Execute run_smbmap run_smbmap Execute run_smtp_user_enum run_smtp_user_enum Execute run_smugglex run_smugglex Execute run_snmp_check run_snmp_check Execute run_snmpwalk run_snmpwalk Execute run_spiderfoot run_spiderfoot Execute run_sprayhound run_sprayhound Execute run_sqlmap run_sqlmap Execute run_ssh_command run_ssh_command Execute run_sslscan run_sslscan Execute run_ssrfmap run_ssrfmap Execute run_sstimap run_sstimap Execute run_subfinder run_subfinder Execute run_subjack run_subjack Execute run_tar run_tar Execute run_tcpdump run_tcpdump Execute run_theharvester run_theharvester Execute run_ticketer run_ticketer Execute run_tldfinder run_tldfinder Execute run_tlsx run_tlsx Execute run_trivy run_trivy Execute run_trufflehog run_trufflehog Execute run_uncover run_uncover Execute run_urlfinder run_urlfinder Execute run_uro run_uro Execute run_username_anarchy run_username_anarchy Execute run_vulnx run_vulnx Execute run_wafw00f run_wafw00f Execute run_wapiti run_wapiti Execute run_wfuzz run_wfuzz Execute run_wget run_wget Execute run_whatweb run_whatweb Execute run_windapsearch run_windapsearch Execute run_wmipersist run_wmipersist Execute run_wmiquery run_wmiquery Execute run_wp run_wp Execute run_wpprobe_scan run_wpprobe_scan Execute run_wpscan run_wpscan Execute run_xsser run_xsser Execute run_xsstrike run_xsstrike Execute run_xxexploiter run_xxexploiter Execute run_ysoserial run_ysoserial Execute run_zip run_zip Execute split_pcap split_pcap Execute start_autopsy start_autopsy Execute start_bruteshark_live start_bruteshark_live Execute start_caido_service start_caido_service Execute start_certipy_relay start_certipy_relay Execute start_chisel_client start_chisel_client Execute start_chisel_server start_chisel_server Execute start_commix_session start_commix_session Execute start_dnscat2_server start_dnscat2_server Execute start_docker_monitor start_docker_monitor Execute start_evil_winrm start_evil_winrm Execute start_goshs start_goshs Execute start_gowitness_report_server start_gowitness_report_server Execute start_hashcat_session start_hashcat_session Execute start_impacket_sniff start_impacket_sniff Execute start_interactsh_client start_interactsh_client Execute start_interactsh_server start_interactsh_server Execute start_jrmp_listener start_jrmp_listener Execute start_k8scan_server start_k8scan_server Execute start_karmasmb start_karmasmb Execute start_kubectl_port_forward start_kubectl_port_forward Execute start_kubernetes_persistence start_kubernetes_persistence Execute start_ligolo_proxy start_ligolo_proxy Execute start_mimikatz_interactive_session start_mimikatz_interactive_session Execute start_mitm6 start_mitm6 Execute start_msf_handler start_msf_handler Execute start_ncat_listener start_ncat_listener Execute start_netcat_listener start_netcat_listener Execute start_netdiscover_monitor start_netdiscover_monitor Execute start_ntlmrelayx start_ntlmrelayx Execute start_php_server start_php_server Execute start_phpsploit_session Establishes a persistent, interactive connection to a pre-deployed PHP backdoor. Execute start_proxify start_proxify Execute start_psexec_shell start_psexec_shell Execute start_pwncat_session start_pwncat_session Execute start_recon_ng_interactive start_recon_ng_interactive Execute start_responder start_responder Execute start_smb_server start_smb_server Execute start_sniffer start_sniffer Execute start_spiderfoot_web start_spiderfoot_web Execute start_sqlmap_os_shell start_sqlmap_os_shell Execute start_ssh_tunnel start_ssh_tunnel Execute start_sshuttle start_sshuttle Execute start_ssrfmap_handler start_ssrfmap_handler Execute start_sstimap_interactive start_sstimap_interactive Execute start_tcpdump_capture start_tcpdump_capture Execute start_trivy_server start_trivy_server Execute start_weevely_session start_weevely_session Execute start_wireless_listener start_wireless_listener Execute start_wp_shell Open an interactive PHP shell (REPL) within the context of the WordPress environment. Execute start_xfreerdp start_xfreerdp Execute stop_autopsy Terminate a running Autopsy forensic server process using its PID. Execute stop_bruteshark_live Terminates a background Bruteshark live capture process. Execute stop_caido_service Terminates a running Caido service process using its PID. Execute stop_certipy_relay Terminate a background Certipy relay process. Execute stop_chisel_process Terminates a background Chisel server or client process using its PID. Execute stop_commix_session Terminates a background Commix session (pseudo-shell or reverse shell handler) Execute stop_dnscat Terminates a background dnscat process. Execute stop_dnscat2_server Terminates a background dnscat2-server process using its Process ID (PID). Execute stop_docker_monitor Stop a background Docker monitoring process using its PID. Execute stop_evil_winrm Terminates a running evil-winrm background session. Execute stop_fping_monitor Terminates a long-running fping monitor process. Execute stop_goshs Terminates a background goshs server process using its PID. Execute stop_gowitness_report_server Terminates a gowitness report server process. Execute stop_hashcat_session Terminates a background hashcat session. Execute stop_impacket_sniff Terminates a background impacket-sniff process. Execute stop_interactsh Terminates a running interactsh-client or interactsh-server process. Execute stop_jrmp_listener Terminates a background JRMP listener process. Execute stop_k8scan_server Terminates a background k8scan server process. Execute stop_karmasmb Terminates a background impacket-karmaSMB server process. Execute stop_kubectl_process Terminates a background kubectl process (like a port-forwarder) using its PID. Execute stop_kubernetes_persistence Terminate a background Kubernetes process (log stream or exec) using its PID. Execute stop_ligolo_proxy Terminates a running ligolo-proxy process. Execute stop_mimikatz_session Terminate a background Mimikatz session. Execute stop_mitm6 Terminates a running mitm6 process using its Process ID (PID). Execute stop_msf_handler Terminates a background Metasploit handler process. Execute stop_ncat_listener Terminates a background Ncat listener process. Execute stop_netcat_listener Terminates a background Netcat listener process using its PID. Execute stop_netdiscover_monitor Terminates a background netdiscover monitoring process. Execute stop_ntfs_shell Terminates a background impacket-ntfs-read interactive exploration process. Execute stop_ntlmrelayx Terminates a background ntlmrelayx process. Execute stop_objection_session Terminates a backgrounded objection exploration session. Execute stop_php_server Terminate a background PHP development server using its Process ID (PID). Execute stop_phpsploit_session Terminates a background phpsploit session using its Process ID (PID). Execute stop_proxify Terminates a running proxify background process. Execute stop_psexec_shell Terminates a background PSExec shell session. Execute stop_pwncat_session Terminates a background pwncat session using its Process ID (PID). Execute stop_recon_ng_interactive Terminates a background recon-ng session using its PID. Execute stop_responder Terminates a running Responder background process. Execute stop_smb_process Terminates a background impacket-smbclient process. Execute stop_smb_server Terminate a running Impacket SMB server process. Execute stop_sniffer Terminates a background sniffing process using its Process ID (PID). Execute stop_spiderfoot_web Terminates a background SpiderFoot web server process. Execute stop_sqlmap_os_shell Terminates a background sqlmap os-shell process. Execute stop_ssh_tunnel Terminates a background SSH tunnel or process. Execute stop_sshuttle Terminate a background sshuttle process. Execute stop_ssrfmap_handler Terminate a background ssrfmap handler process. Execute stop_sstimap_interactive Terminates a background sstimap session using its PID. Execute stop_tcpdump_capture Terminates a background tcpdump capture session using its Process ID (PID). Execute stop_trivy_server Terminate a background Trivy server process. Execute stop_weevely_session Terminates a background Weevely session. Execute stop_wget_process Terminates a background wget process using its PID. Execute stop_wireless_listener Terminates a background wireless process using its PID. Execute stop_wp_shell Terminates a background wp shell process by PID. Execute stop_xfreerdp Terminates a running XFreeRDP session by its Process ID (PID). Execute stop_xsser_gui Terminates a background XSSer GUI process using its PID. Execute monitor_fping Starts a continuous, long-running fping monitor against a target host. Execute generate_weevely_agent generate_weevely_agent Execute manage_brew manage_brew Execute manage_dirb_dictionaries manage_dirb_dictionaries Execute manage_mounts manage_mounts Execute manage_sliver_daemon manage_sliver_daemon Execute manage_wpprobe manage_wpprobe Execute objection_patch objection_patch
OTHER 1 tools
Other convert_ticket convert_ticket

Route Pentester-MCP through PolicyLayer and every one of its 337 tools is checked against your policy before it runs.

CHECK YOUR STACK →

See every tool, the dangerous ones, and the token cost across your stack.

// FAQ
How many tools does the Pentester-MCP MCP server have? +

The Pentester-MCP MCP server exposes 337 tools across 3 categories: Read, Execute, Other.

How do I enforce policies on Pentester-MCP tools? +

Route the Pentester-MCP server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do Pentester-MCP tools fall into? +

Pentester-MCP tools are categorised as Read (4), Execute (332), Other (1). Each category has a recommended default policy.

Enforce policy on every Pentester-MCP tool call.

Start from Pentester-MCP, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.

CHECK YOUR STACK →

Free to start. No card required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.