// MCP TOOL REFERENCE

SYSPLANT TOOLS

9 tools from the Sysplant MCP Server, categorised by risk level.

View the Sysplant policy →
// ALL 9 SYSPLANT TOOLS
READ 8 tools
Read get_function_prototype Look up the full prototype of a specific NtFunction. Returns the return type, library, and all paramet... Read list_common_syscalls List the 31 most common NtFunctions used in offensive tooling. These cover process/thread creation, me... Read list_donut_syscalls List the 14 NtFunctions used by the Donut shellcode loader project. Useful when generating stubs speci... Read list_iterators List all 7 available syscall iterators with descriptions. Each iterator implements a different strateg... Read list_languages List the 4 supported output languages with file extensions and toolchains. Returns: Formatted ... Read list_methods List all 4 available syscall caller stub methods with descriptions. Each method defines how the resolv... Read list_supported_syscalls List all ~300+ supported NtFunction names. Returns every NtFunction that SysPlant knows how to generat... Read scan_ntfunctions Scan source files for NtFunction / ZwFunction usage. Walks the given file or directory and detects whi...
EXECUTE 1 tools
Execute generate_syscalls generate_syscalls

Route Sysplant through PolicyLayer and every one of its 9 tools is checked against your policy before it runs.

GOVERN SYSPLANT →

Enforced before the call runs. Nothing to install.

// FAQ
How many tools does the Sysplant MCP server have? +

The Sysplant MCP server exposes 9 tools across 2 categories: Read, Execute.

How do I enforce policies on Sysplant tools? +

Route the Sysplant server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do Sysplant tools fall into? +

Sysplant tools are categorised as Read (8), Execute (1). Each category has a recommended default policy.

Enforce policy on every Sysplant tool call.

Deterministic rules across all 9 Sysplant tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

GOVERN SYSPLANT →

Free to start. No card required.

42,500+ MCP servers and 110,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.