// MCP TOOL REFERENCE

KALI MCP SERVER TOOLS

36 tools from the Kali MCP Server MCP Server, categorised by risk level.

// ALL 36 KALI MCP SERVER TOOLS

READ 12 tools

Read parse_nmap Parse nmap output (text or XML) into structured findings Read exploit_search Search for exploits using searchsploit and other exploit databases Read fetch Fetches a website and returns its content Read file_analysis Analyze a file using various tools (file type, strings, hash) Read hash_identify Identify hash types from hash strings (MD5, SHA, bcrypt, NTLM, etc.) Read header_analysis Analyze HTTP headers for security issues Read resources Lists available system resources and command examples Read session_history Show command/evidence history for the current session Read session_list List all pentest sessions with metadata Read session_results Read recent output files for the active session Read session_status Show current session status and summary Read ssl_analysis Analyze SSL/TLS configuration of a website

WRITE 5 tools

Write credential_store Store/retrieve discovered credentials tied to sessions Write download_file Download a file from a URL and save it locally Write create_report Generate a structured report from findings Write save_output Save content to a timestamped file for evidence collection Write session_create Create a new pentest session (name, description, target)

DESTRUCTIVE 1 tools

Destructive session_delete Delete a pentest session and all its evidence

EXECUTE 18 tools

Execute parse_tool_output Parse output from nikto/gobuster/dirb/hydra/sqlmap into structured findings Execute run Runs a shell command on the Kali Linux system Execute dns_enum Comprehensive DNS enumeration with zone transfer attempts Execute encode_decode Multi-format encoding/decoding (base64, URL, hex, HTML, ROT13) Execute enum_shares SMB/NFS share enumeration (smbclient, enum4linux, showmount) Execute form_analysis Analyze a web form for vulnerabilities Execute hydra_attack Brute-force credential testing via hydra Execute network_discovery Perform multi-stage network reconnaissance and discovery Execute port_scan Smart nmap wrapper with scan presets (quick, full, stealth, udp, service, aggressive) Execute recon_auto Automated multi-stage reconnaissance pipeline (DNS, ports, headers, SSL, exploits) Execute reverse_shell Generate reverse shell one-liners for various languages Execute spider_website Spider a website to find all links and resources Execute subdomain_enum Enumerate subdomains of a target website Execute vulnerability_scan Perform automated vulnerability assessment with multiple tools Execute web_audit Perform a comprehensive web application audit Execute web_enumeration Perform comprehensive web application discovery and enumeration Execute payload_generate Generate payloads using msfvenom (reverse shell, bind shell, meterpreter) Execute session_switch Switch to a different pentest session

// FAQ

How many tools does the Kali MCP Server MCP server have? +

The Kali MCP Server MCP server exposes 36 tools across 4 categories: Read, Write, Destructive, Execute.

How do I enforce policies on Kali MCP Server tools? +

Route the Kali MCP Server server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do Kali MCP Server tools fall into? +

Kali MCP Server tools are categorised as Read (12), Write (5), Destructive (1), Execute (18). Each category has a recommended default policy.

Enforce policy on every Kali MCP Server tool call.

Start from Kali MCP Server, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.

CHECK YOUR STACK →

Free to start. No card required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.