// MCP TOOL REFERENCE
High Risk →

ludus_power

Power management for range VMs (start/stop). Power off operations require confirmation as they may interrupt running processes.

How to control ludus_power ↓

WHAT LUDUS_POWER ON LUDUSMCP SERVER DOES

AI agents invoke ludus_power to trigger actions in LudusMCP Server. What it does depends on the arguments the agent supplies, and its effects often reach beyond the immediate call — builds kicked off, notifications sent, workflows started.

THE RISK

High Risk

This tool executes commands that change the state of virtual machines. While power-on/off operations are reversible (unlike Destructive actions), they are Execute-category because they trigger external VM operations with side effects beyond the agent's control. The tool could disrupt running security training, interrupt user work, or affect multiple VMs depending on how the agent invokes it.

From the tool's definition Tool description states 'Power management for range VMs (start/stop)' — directly triggers external operations (VM power state changes) whose effects depend on arguments (start vs. stop).

Documented attack patterns abuse exactly the kind of access ludus_power gives an agent:

HOW TO CONTROL LUDUS_POWER

PolicyLayer is an MCP gateway — it sits between your AI agents and LudusMCP Server, and nothing reaches the server without passing your rules. This is the rule we recommend for ludus_power:

policy.json 
{
  "version": "1",
  "default": "deny",
  "tools": {
    "ludus_power": {
      "limits": [
        {
          "counter": "ludus_power_rate",
          "window": "minute",
          "max": 10,
          "scope": "grant"
        }
      ]
    }
  }
}

ludus_power stays usable, but rate-capped — a runaway agent can't fire it dozens of times a minute. Everything else on the server is denied unless you say otherwise.

  1. Create a free account and register LudusMCP Server — nothing to install.
  2. Add this policy — paste it, or build it visually.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
RATE-LIMIT THIS TOOL →

Free to start. No card required.

EXPLORE

More LudusMCP Server tools

Destructive destroy_range Destroy a Ludus range, permanently removing all VMs and freeing resources. This action is Execute deploy_range Deploy a Ludus range from a configuration file. This creates a new virtualized training en Execute ludus_cli_execute CRITICAL: Do NOT include Write get_credential_from_user MCP TOOL (NOT a Ludus CLI command) - Prompt user to securely enter a credential via popup Write ludus_range_planner PRIMARY RANGE ORCHESTRATOR - Use this FIRST for any range creation! Analyzes requirements, Write set_range_config Apply range configuration to Ludus server. Sets active configuration for deployment.\n\nWO Write write_range_config Write range configuration to file with automatic validation. Creates directories as needed Read get_connection_info Get connection information for accessing a Ludus range. Supports RDP configurations, WireG

All 29 LudusMCP Server tools →

Execute tools on other servers

Frida Game Hacking MCP remove_breakpoint Procmon request_elevation WireMCP capture_packets Pentest Ai run_probe

Go deeper

FAQ

What does the ludus_power tool do? +

Power management for range VMs (start/stop). Power off operations require confirmation as they may interrupt running processes. It is categorised as a Execute tool in the LudusMCP Server MCP Server, which means it can trigger actions or run processes. Use rate limits and argument validation.

How do I enforce a policy on ludus_power? +

Register the LudusMCP Server MCP server in PolicyLayer and add a rule for ludus_power: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches LudusMCP Server. Nothing to install.

What risk level is ludus_power? +

ludus_power is a Execute tool with high risk. Execute tools should be rate-limited and have argument validation enabled.

Can I rate-limit ludus_power? +

Yes. Add a rate_limit block to the ludus_power rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block ludus_power completely? +

Set action: deny in the PolicyLayer policy for ludus_power. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides ludus_power? +

ludus_power is provided by the LudusMCP Server MCP server (noctedefensor/ludusmcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

Enforce policy on every LudusMCP Server tool call.

Deterministic rules across all 29 LudusMCP Server tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

GOVERN LUDUSMCP →

Free to start. No card required.

29 LudusMCP Server tools catalogued and risk-classified — across an index of 42,500+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.