MCP Server Pentest
Server Configuration
Describes the environment variables required to run the server.
| Name | Required | Description | Default |
|---|---|---|---|
No arguments | |||
Schema
Prompts
Interactive templates invoked by user choice
| Name | Description |
|---|---|
No prompts | |
Resources
Contextual data attached and managed by the client
| Name | Description |
|---|---|
| Browser console logs |
Tools
Functions exposed to the LLM to take actions
| Name | Description |
|---|---|
| browser_navigate | Navigate to a URL |
| browser_screenshot | Take a screenshot of the current page or a specific element |
| browser_click | Click an element on the page using CSS selector |
| broser_url_reflected_xss | Test whether the URL has an XSS vulnerability |
| browser_click_text | Click an element on the page by its text content |
| browser_fill | Fill out an input field |
| browser_select | Select an element on the page with Select tag using CSS selector |
| browser_select_text | Select an element on the page with Select tag by its text content |
| browser_hover | Hover an element on the page using CSS selector |
| browser_hover_text | Hover an element on the page by its text content |
| browser_evaluate | Execute JavaScript in the browser console |
| browser_url_sql_injection | Test whether the URL has SQL injection vulnerabilities |