brunopark-mcp
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@brunopark-mcpDo a comprehensive security scan of example.com"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
brunopark-mcp
AI-orchestrated security testing via 6 Python tools, exposed as MCP (Model Context Protocol) tools.
Lean alternative to HexStrike AI — same architecture (MCP + Decision Engine + Visual Engine), but built around 6 high-quality Python tools instead of 150+ external CLI dependencies.
What is this?
brunopark-mcp is a Model Context Protocol server that exposes Bruno's 6 security tools as tools callable by any MCP-compatible AI agent (Claude Desktop, Hermes, Cursor, VS Code Copilot, etc).
It also includes a Decision Engine that auto-selects which tools to run based on the target type and the user's stated objective (recon, vuln_hunt, comprehensive, etc).
Related MCP server: pentestMCP
The 6 tools
MCP Tool | Wraps | Purpose |
| Banner grabbing + CVE lookup | |
| Async port scan + banner grabbing | |
| Subdomain enumeration | |
| Security headers + JS analysis | |
| API path fuzzing + Ghost Mode | |
| Multi-source recon orchestrator |
Plus meta-tools:
smart_security_scan(target, objective)— auto-picks tools and chains themanalyze_target(target)— classify target type and recommend toolscreate_attack_plan(target, objective)— return ordered list (dry run, no execution)list_tools()— list all available tools
Architecture
LLM Agent (Claude/Hermes/GPT)
→ MCP protocol
→ brunopark-mcp server (FastMCP)
→ 6 Python tools as @mcp.tool() decorators
→ Structured JSON results back to LLMInspired by HexStrike AI v6.0 architecture, but:
6 tools instead of 150
1 file (server.py) instead of 17k-line monolith
No external CLI dependencies (nmap, sqlmap, etc)
Heuristic Decision Engine (no LLM cost per call)
Installation
# 1. Install brunopark-mcp core
pip install -e .
# 2. Install all 6 tools (optional — they degrade gracefully if missing)
pip install recon-tool port-scanner sub-hunter front-end-scanner api-pathfinder nemesis-scanner
# Or install one by one
pip install recon-toolIf a tool is not installed, the corresponding MCP tool returns a structured error with installation instructions.
Configuration
Claude Desktop
Edit ~/.config/Claude/claude_desktop_config.json:
{
"mcpServers": {
"brunopark-mcp": {
"command": "python3",
"args": ["-m", "brunopark_mcp"],
"timeout": 300
}
}
}Cursor
Same config in Cursor's MCP settings.
Hermes
Add to ~/.hermes/config.yaml:
mcp_servers:
- name: brunopark-mcp
command: python3
args: ["-m", "brunopark_mcp"]
tools: [terminal, file, web]Usage example
Ask the LLM:
"Do a comprehensive security scan of example.com"
The LLM will call:
smart_security_scan(target="https://example.com", objective="comprehensive")The Decision Engine will:
Classify the target as
domain(orweb_applicationif you pass a URL)Rank tools by effectiveness
Execute:
hunt_subdomains→scan_ports→recon_target→scan_frontend→fuzz_api→orchestrate_nemesisAggregate findings into a severity-scored report
Decision Engine
Pre-built matrix that maps target type → tool ranking. No LLM cost per call.
TOOL_EFFECTIVENESS = {
"web_application": {
"scan_frontend": 0.95,
"fuzz_api": 0.90,
"scan_ports": 0.85,
"recon_target": 0.80,
"hunt_subdomains": 0.50,
"orchestrate_nemesis": 0.85,
},
"network_host": {
"scan_ports": 0.95,
"recon_target": 0.85,
"orchestrate_nemesis": 0.90,
},
"domain": {
"hunt_subdomains": 0.95,
"orchestrate_nemesis": 0.92,
"recon_target": 0.70,
},
"api_endpoint": {
"fuzz_api": 0.95,
"scan_frontend": 0.80,
},
}Objectives
Objective | Tools used | Use case |
|
| No active probing; OSINT only |
|
| Fast check, top 50 ports |
|
| Mapping the target |
|
| Find vulns, not just discover |
| All 6 | Full audit |
Safety
This is a security testing framework. Each of the 6 underlying tools has its own ethical disclaimer. Default behavior is non-destructive (read-only scanning). Destructive options (like Ghost Mode bypass in fuzz_api) are opt-in.
Use only on targets you own or have explicit written authorization to test.
Development
pip install -e ".[dev]"
pytest
ruff check src tests
mypy srcComparison to HexStrike AI
brunopark-mcp | HexStrike AI | |
Tools | 6 (Bruno's Python tools) | 150+ (nmap, sqlmap, nuclei, etc) |
External deps | None required | 150+ CLIs must be installed |
LOC | ~600 | 17k+ |
Languages | Python 3.10+ | Python 3.10+ |
MCP support | Native (FastMCP) | Native (FastMCP) |
Decision engine | Heuristic | Heuristic + AI |
Setup complexity | Low | High (Kali Linux recommended) |
Best for | Python-first bug bounty | Full-spectrum pentesting |
License
MIT
Author
Bruno Rodrigo
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/brunopark852/brunopark-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server