MCP Servers

模型上下文协议服务器、框架、SDK 和模板的综合目录。

K
Kali MCP Server
作者 @sudohakan
GitHub 仓库(1 星标)

Docker-based Kali Linux MCP server with 35 penetration testing tools

创建于 3/22/2026
更新于 about 4 hours ago
README
View Source
Repository documentation and setup instructions

🔐 Kali MCP Server

AI-assisted penetration testing with 35 security tools in a Docker container.

Version Python Docker License CI Stars

Quick Start · Features · Tools · Architecture · Contributing

What is this?

A Docker-containerized MCP server running on Kali Linux that gives AI assistants access to 35 security and penetration testing tools. Communicate via SSE on port 8000 and let Claude run nmap scans, enumerate subdomains, test SSL/TLS, crack hashes, and generate payloads through natural language.

✨ Features

| Feature | Details | |:--------|:--------| | 35 security tools | Network scanning, web testing, credential attacks, exploitation, encoding | | Session management | Create, switch, track sessions with full command history | | Evidence collection | Save outputs, generate reports (Markdown/JSON/text) | | Credential store | Per-session credential tracking for discovered creds | | Output parsing | Structured JSON from nmap, nikto, gobuster, hydra, sqlmap | | Payload generation | Msfvenom payloads + one-liner reverse shells (8 languages) | | Auto recon | Multi-stage reconnaissance pipeline with depth levels | | Docker isolation | All tools run inside a container — no host pollution |

🚀 Quick Start

1. Clone and build

git clone https://github.com/sudohakan/kali-mcp-server.git
cd kali-mcp-server
docker compose up --build -d

2. Configure Claude Code

Add to .claude.json:

{
  "mcpServers": {
    "kali-mcp": {
      "type": "sse",
      "url": "http://localhost:8000/sse"
    }
  }
}

3. Use it

Ask Claude: "Scan 192.168.1.0/24 for open ports" or "Check SSL configuration of example.com"

🛠️ Tool Categories

Reconnaissance & Scanning (5 tools)

| Tool | Description | |------|-------------| | port_scan | Smart nmap wrapper with presets | | dns_enum | DNS enumeration with zone transfers | | network_discovery | Multi-stage network reconnaissance | | subdomain_enum | Subdomain enumeration (subfinder, amass) | | recon_auto | Automated multi-stage pipeline |

Web Application Testing (7 tools)

| Tool | Description | |------|-------------| | vulnerability_scan | Automated vulnerability assessment | | web_enumeration | Application discovery and enumeration | | web_audit | Comprehensive security audit | | spider_website | Web crawling with gospider | | form_analysis | Discover and analyze forms | | header_analysis | HTTP header security assessment | | ssl_analysis | SSL/TLS security via testssl.sh |

Credential & Brute-Force (2 tools)

| Tool | Description | |------|-------------| | hydra_attack | Brute-force (SSH, FTP, HTTP, SMB, MySQL, RDP) | | credential_store | Store/retrieve discovered credentials |

Payload & Exploit (3 tools)

| Tool | Description | |------|-------------| | payload_generate | Msfvenom payloads (reverse/bind/meterpreter) | | reverse_shell | One-liner generators (bash, python, php, perl, nc, ruby, java, powershell) | | exploit_search | Searchsploit-powered exploit discovery |

Encoding, Parsing & Evidence (10 tools)

| Tool | Description | |------|-------------| | encode_decode | Base64, URL, hex, HTML, ROT13 | | hash_identify | Hash type identification | | parse_nmap | Structured JSON from nmap output | | parse_tool_output | Parse nikto, gobuster, dirb, hydra, sqlmap | | save_output | Timestamped evidence storage | | create_report | Generate Markdown/JSON/text reports | | file_analysis | Type detection, strings, hashes, metadata | | download_file | Download with hash verification | | enum_shares | SMB/NFS share enumeration | | run | Execute any shell command in Kali |

Session Management (6 tools)

| Tool | Description | |------|-------------| | session_create | Create new pentest session | | session_list | List all sessions | | session_switch | Switch between sessions | | session_status | Current session status | | session_delete | Delete session and evidence | | session_history | Command history |

🏗️ Architecture

┌──────────────┐     SSE/HTTP      ┌─────────────────────────────┐
│  Claude Code │ ◄──────────────► │  Kali MCP Server (Docker)   │
│  or any MCP  │    port 8000     │                             │
│  client      │                  │  nmap, sqlmap, hydra        │
└──────────────┘                  │  metasploit, nikto, amass   │
                                  │  subfinder, testssl         │
                                  │  hashcat, gobuster, ffuf    │
                                  │  Session & Evidence mgmt   │
                                  └─────────────────────────────┘

📁 Project Structure

kali-mcp-server/
├── kali_mcp_server/
│   ├── __init__.py
│   ├── server.py          # MCP server setup
│   ├── tools.py           # 35 tool implementations
│   └── utils.py           # Shared utilities
├── sessions/              # Pentest session data
├── tests/
│   ├── test_server.py
│   └── test_tools.py
├── Dockerfile             # Kali Linux image
├── docker-compose.yml
├── pyproject.toml
└── README.md

🤝 Contributing

See CONTRIBUTING.md for Docker build workflow, how to add new tools, and PR process.

📄 License

MIT — Copyright 2026 Hakan Topcu

Disclaimer: For authorized security testing only. Always obtain proper authorization before testing systems you do not own.

快速设置
此服务器的安装指南

安装包 (如果需要)

uvx kali-mcp-server

Cursor 配置 (mcp.json)

{ "mcpServers": { "sudohakan-kali-mcp-server": { "command": "uvx", "args": [ "kali-mcp-server" ] } } }
作者服务器
其他服务器由 sudohakan

Cheatengine MCP Bridge

MCP bridge for AI-assisted process analysis via named pipes

1

Gtasks MCP

Google Tasks MCP Server — task lists, CRUD operations, search

1