PwnBridge
OfficialProvides tools to run security assessments on a remote Kali Linux machine, including reconnaissance, web testing, exploitation, and static/dynamic analysis.
Enables execution of Metasploit modules for exploitation tasks via the 'metasploit_exec' tool.
Integrates OWASP ZAP for dynamic application security testing (DAST) with support for multiple authentication modes and parallel scanning.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@PwnBridgeScan example.com for open ports"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
⚠️ AUTHORIZED USE ONLY — Only test systems you own or have explicit written permission to test. Unauthorized access to computer systems is illegal.
What is PwnBridge?
PwnBridge is a Model Context Protocol (MCP) server that bridges AI assistants to a Kali Linux machine over SSH. Ask Claude, ChatGPT, or Gemini to run a port scan, test for SQL injection, or perform a full SAST/DAST security assessment — the AI translates intent into commands, executes them on your Kali box, streams back results, and keeps a full audit trail.
┌─────────────────────────────────────────────────────────────────────────┐
│ │
│ Claude Desktop ──── stdio ────┐ │
│ │ │
│ ChatGPT ──────── HTTP/SSE ───►│ PwnBridge ──── SSH ────► Kali Linux │
│ │ (11 tools) │
│ Gemini CLI ───── HTTP/SSE ───►│ │
│ │ │
└─────────────────────────────────────────────────────────────────────────┘Dual Transport
Transport | Clients | Protocol |
stdio | Claude Desktop | MCP native (spawned process) |
HTTP / SSE | ChatGPT, Gemini CLI, any MCP client | Streamable HTTP + legacy SSE |
Related MCP server: MCP Kali Server
Tools
Reconnaissance & Scanning
Tool | Description |
| Port scanning — quick, service, OS, full, stealth, UDP profiles |
| Web server vulnerability and misconfiguration detection |
| CMS, framework, and technology fingerprinting |
Web Application Testing
Tool | Description |
| SQL injection detection and exploitation |
| Directory, file, subdomain, and vhost enumeration |
| Web fuzzing with |
Exploitation & Auth Testing
Tool | Description |
| Password brute-force — SSH, FTP, HTTP, SMB, RDP, and more |
| Non-interactive Metasploit module execution |
Security Analysis
Tool | Description |
| Static analysis — Semgrep + Bandit + Gitleaks + Graudit in parallel, versioned reports |
| Dynamic analysis — OWASP ZAP + Nuclei, 5 auth modes, versioned reports |
Utility
Tool | Description |
| Raw shell command passthrough (escape hatch for advanced scenarios) |
Quick Start
Prerequisites
Kali Linux machine accessible over SSH (VM, VPS, or bare metal)
Node.js 22+ on your local machine
1. Clone & Install
git clone https://github.com/1mr0-tech/simple-kali-mcp.git pwnbridge
cd pwnbridge
npm install2. Configure
cp .env.example .envEdit .env — minimum required:
SSH_HOST=192.168.1.100 # Your Kali machine IP
SSH_USER=kali
SSH_PRIVATE_KEY_PATH=~/.ssh/id_rsa # Recommended over password3. Build
npm run build4. Connect Your AI Assistant
Claude Desktop
Add to ~/Library/Application Support/Claude/claude_desktop_config.json (macOS) or %APPDATA%\Claude\claude_desktop_config.json (Windows):
{
"mcpServers": {
"pwnbridge": {
"command": "node",
"args": ["/absolute/path/to/pwnbridge/dist/index.js", "--stdio"]
}
}
}Restart Claude Desktop. All 11 tools appear automatically.
ChatGPT
Option A — MCP Connector (ChatGPT Plus / Team / Enterprise):
node dist/index.js --http # starts on port 3000In ChatGPT → Settings → Connected Apps → Add MCP Server → http://your-server:3000/mcp
Option B — Custom GPT Actions (legacy):
Import the auto-generated schema: http://your-server:3000/openapi.yaml
Gemini CLI
Add to ~/.gemini/settings.json:
{
"mcpServers": {
"pwnbridge": {
"httpUrl": "http://your-server:3000/mcp",
"headers": { "x-api-key": "your-key-here" }
}
}
}SAST Scanning
Run static analysis on a local codebase. Code is synced to Kali via SFTP, scanned in parallel, then deleted — only the report is kept.
AI: "Run a SAST scan on /Users/me/projects/backend, project name backend-api"What runs on Kali:
┌─────────────────────────────────────────────────────────────────┐
│ SFTP Upload (8 concurrent streams) │
│ /Users/me/projects/backend → /tmp/kali-sast-abc123/src/ │
└───────────────────────┬─────────────────────────────────────────┘
│ parallel
┌───────────────┼───────────────┬──────────────┐
▼ ▼ ▼ ▼
Semgrep Bandit Gitleaks Graudit
(multi-lang) (Python*) (secrets) (lang-aware)
│ │ │ │
└───────────────┴───────────────┴──────────────┘
│ consolidated report
▼
~/kali-mcp-reports/sast/backend-api/v002_20240120_091500_sast_all.mdBandit is automatically skipped if no .py files are found.
Graudit uses language auto-detection to target the right rule databases (e.g. python,js,code).
Report Naming
~/kali-mcp-reports/
sast/
{project}/
v001_20240115_103000_sast_all.md
v002_20240120_091500_sast_semgrep+bandit.md
v003_20240125_140000_sast_all.mdDAST Scanning
Run dynamic analysis against a live web application.
AI: "Run a full authenticated DAST scan on http://192.168.1.50, form login at /login"Authentication modes:
| How it works |
| Standard unauthenticated crawl |
| Injects |
| Injects |
| Injects |
| Generates ZAP Automation Framework YAML — full login flow |
What runs on Kali (parallel):
ZAP (spider → passive scan → active scan)
+
Nuclei (CVE + template detection)
│
▼
~/kali-mcp-reports/dast/192.168.1.50/v001_20240115_103000_dast_full_form-auth.mdReport Naming
~/kali-mcp-reports/
dast/
{host}/
v001_20240115_103000_dast_baseline_unauth.md
v002_20240116_090000_dast_full_form-auth.md
v003_20240118_143000_dast_full_bearer-auth.mdConfiguration Reference
Variable | Default | Description |
| — | Required. Kali machine IP or hostname |
|
| SSH port |
| — | Required. SSH username |
| — | SSH password (prefer key auth) |
| — | Path to private key — |
| — | Passphrase for encrypted private key |
|
| HTTP server port |
|
| HTTP bind address |
| — | API key to protect the HTTP endpoint |
|
| Default command timeout (5 min) |
|
| nmap timeout (10 min) |
|
| sqlmap timeout (15 min) |
|
| SAST scan timeout (15 min) |
|
| DAST scan timeout (30 min) |
|
| Local audit log file |
|
| Report directory on Kali |
Audit Logging
Every command is logged with a full timestamp:
{"timestamp":"2024-01-15 10:30:00","level":"info","message":"COMMAND_EXECUTED",
"tool":"nmap_scan","command":"nmap -T4 -F 192.168.1.1","target":"192.168.1.1"}Log: ./logs/audit.log — rotates at 50MB, keeps 5 files.
Server Commands
# HTTP mode — ChatGPT / Gemini
npm run start:http
# stdio mode — Claude Desktop (usually auto-launched)
npm run start:stdio
# Health check
curl http://localhost:3000/healthSecurity Considerations
Concern | Mitigation |
Unauthorized access | Set |
Credential theft | Use SSH key auth over password |
Command injection | Tool schemas use enums and typed params — only |
Audit trail | All commands logged with timestamp, tool, target, and full command string |
Source code exposure | SAST uploads code temporarily — deleted immediately after scan |
Network exposure | Restrict port 3000 at firewall level; bind to |
Tool Requirements on Kali
Tool | Install |
nmap | Pre-installed |
nikto |
|
sqlmap | Pre-installed |
gobuster |
|
ffuf |
|
whatweb | Pre-installed |
hydra | Pre-installed |
metasploit | Pre-installed |
semgrep |
|
bandit |
|
gitleaks |
|
graudit |
|
zaproxy |
|
nuclei |
|
Troubleshooting
SSH connection fails:
ssh -i ~/.ssh/id_rsa kali@<host>Tool not appearing in Claude Desktop:
Verify absolute path in
claude_desktop_config.jsonRestart Claude Desktop after config changes
Check logs:
~/Library/Logs/Claude/(macOS)
ZAP / Nuclei / Semgrep not found:
apt install zaproxy nuclei gitleaks graudit
pip install semgrep banditLicense
MIT — see LICENSE for details.
Built for authorized security professionals. Assess responsibly.
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/1mr0-tech/PwnBridge'
If you have feedback or need assistance with the MCP directory API, please join our Discord server