
Kali MCP Server
@cyberillo
关于 Kali MCP Server
A Python MCP Server that connects Large Language Models natively to a comprehensive suite of offensive security tools.
基本信息
配置
使用下面的配置,将此服务器添加到你的 MCP 客户端。
{
"mcpServers": {
"kali-tools": {
"command": "docker",
"args": [
"run",
"-i",
"--rm",
"kali-mcp-server"
]
}
}
}工具
未检测到工具
工具是从 README 中自动提取的。维护者可以在 ## Tools 标题下列出工具,即可填充这部分内容。
概览
What is Kali MCP Server?
The Kali MCP Server is a specialized Model Context Protocol (MCP) implementation that connects Large Language Models (LLMs) natively to a comprehensive suite of offensive security, reconnaissance, and enumeration tools. Powered by the FastMCP Python SDK, it translates natural language requests into safe, encapsulated command-line executions of standard Kali Linux utilities, returning structured output and error logs to the LLM's context window.
How to use Kali MCP Server?
The recommended method is Docker Execution: pull cyberillo/kali-mcp-server:latest from Docker Hub and run interactively with docker run -i --rm kali-mcp-server. Configure it in your MCP client (e.g., Claude Desktop, GitHub Copilot/Cursor) using the stdio transport. Alternatively, clone the repository, set up a Python virtual environment on a Kali Linux host, install the mcp SDK (pip install mcp), ensure required tools are in PATH, and run python3 kali-mcp-server.py.
Key features of Kali MCP Server
- Exposes 21 specialized tools across Recon, Scanning, Web Security, Cracking, and Exploitation categories.
- Automated Docker containerization with full Kali rolling base image and pre-installed tools.
- Builds on the official MCP Python SDK for robust JSON-RPC communication.
- Uses
stdiotransport for direct compatibility with AI IDEs and desktop clients. - Includes wordlist
rockyou.txtautomatically extracted within the Docker image. - Built-in command timeouts (default 300 seconds, extended for heavier tools) to prevent blocking.
Use cases of Kali MCP Server
- Autonomous penetration testing: run WHOIS, DNS enumeration, port scanning, and vulnerability detection from natural language prompts.
- Web application security assessment: perform SQL injection, directory brute-forcing, CMS scanning, and parameter fuzzing.
- Password security auditing: use Hydra, John the Ripper, and Hashcat to test credential strength.
- Exploitation assistance: search Exploit Database, capture network packets with tcpdump, and execute Metasploit Framework modules.
- Integrated recon in CI/CD or security workflows: feed results back to an LLM for analysis and reporting.
FAQ from Kali MCP Server
What tools are included in the Kali MCP Server?
The server exposes 21 tools: whois_lookup, dnsenum_scan, whatweb_scan, amass_enum, netdiscover_scan, nmap_scan, enum4linux_scan, smbclient_list, nikto_scan, gobuster_dir, dirb_scan, ffuf_scan, wfuzz_scan, sqlmap_scan, wpscan_enum, hydra_bruteforce, john_crack, hashcat_crack, searchsploit_query, tcpdump_sniff, and metasploit_exploit.
What are the prerequisites to run Kali MCP Server?
For Docker (recommended), you need Docker Engine installed and running on Windows, macOS, or Linux. For local execution, you need Kali Linux (or a Linux distro with the required tools in PATH), Python 3.10+, and the mcp Python SDK. Some tools like tcpdump require root privileges locally.
How does the Docker setup work?
The server builds on the kalilinux/kali-rolling base image. It updates the system, installs tools (e.g., nmap, sqlmap, metasploit-framework, gobuster, hydra, john), extracts rockyou.txt, and installs the mcp SDK globally using --break-system-packages. The container runs with DEBIAN_FRONTEND=noninteractive for automated builds.
Are there any timeouts or security limitations?
Yes, the run_cmd function has a default timeout of 300 seconds (extended to 600+ for heavier tools like Nikto or Metasploit). Tools like tcpdump and netdiscover inside Docker may require elevated privileges (--privileged or --cap-add), which is discouraged for general use.
What MCP transport does the server use?
The server uses standardized stdio transport for JSON-RPC communication. This bypasses complex network configuration and ensures out-of-the-box compatibility with AI IDEs (Cursor, VS Code) and desktop clients (Claude Desktop).
其他 分类下的更多 MCP 服务器
ghidraMCP
LaurieWiredMCP Server for Ghidra
🚀 Model Context Protocol (MCP) Curriculum for Beginners
microsoftThis open-source curriculum introduces the fundamentals of Model Context Protocol (MCP) through real-world, cross-language examples in .NET, Java, TypeScript, JavaScript, Rust and Python. Designed for developers, it focuses on practical techniques for building modular, scalable,

EverArt
modelcontextprotocolModel Context Protocol Servers
MCP Go 🚀
mark3labsA Go implementation of the Model Context Protocol (MCP), enabling seamless integration between LLM applications and external data sources and tools.
Maestro
mobile-dev-incPainless E2E Automation for Mobile and Web
评论