Kali MCP Server
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@Kali MCP Serverscan 192.168.1.0/24 for open ports"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
Kali MCP Server
AI-powered penetration testing through 36 MCP tools on a containerized Kali Linux
Reconnaissance · Web Testing · Exploitation · Session Management · Evidence Collection
Quick Start · Tools · Architecture · Contributing
Why Kali MCP?
Most security tools require manual operation, context switching, and output parsing. Kali MCP gives AI assistants direct access to 36 security tools inside a Docker-containerized Kali Linux. Communicate via SSE or stdio, and let Claude run nmap scans, enumerate subdomains, crack hashes, generate payloads, and produce structured reports through natural language.
What you get | Details |
36 MCP tools | Network scanning, web testing, credential attacks, exploitation, encoding, evidence collection |
50+ underlying binaries | nmap, sqlmap, hydra, metasploit, nuclei, ffuf, amass, subfinder, hashcat, and more |
Session management | Create, switch, and track pentest sessions with full command history |
Evidence pipeline | Save outputs, generate reports (Markdown/JSON/text), structured output parsing |
Credential store | Per-session credential tracking for discovered creds |
Payload generation | Msfvenom payloads + reverse shell one-liners in 8 languages |
Auto recon | Multi-stage reconnaissance pipeline with configurable depth |
Docker isolation | All tools run inside a container with no host filesystem access |
Related MCP server: redteam-mcp
Quick Start
1. Clone and build
git clone https://github.com/sudohakan/kali-mcp-server.git
cd kali-mcp-server
docker compose up --build -d2. Configure your MCP client
Add to .claude.json:
{
"mcpServers": {
"kali-mcp": {
"type": "sse",
"url": "http://localhost:8000/sse"
}
}
}claude mcp add kali-mcp -- docker exec -i kali-mcp-server python -m kali_mcp_server.server --transport stdio3. Use it
Ask Claude: "Scan 192.168.1.0/24 for open ports" or "Run a deep recon on example.com"
Tools
Reconnaissance and Scanning (6 tools)
Tool | Description |
| Smart nmap wrapper with presets (quick, full, stealth, udp, service, aggressive) |
| Comprehensive DNS enumeration with zone transfer attempts |
| Multi-stage network reconnaissance (quick, comprehensive, stealth) |
| Subdomain enumeration via subfinder, amass |
| Automated multi-stage pipeline (DNS, ports, headers, SSL, exploits) |
| SMB/NFS share enumeration (smbclient, enum4linux, showmount) |
Web Application Testing (7 tools)
Tool | Description |
| Automated vulnerability assessment (quick, comprehensive, web, network) |
| Application discovery and directory enumeration |
| Comprehensive web application security audit |
| Web crawling with configurable depth and threads |
| Discover and analyze web forms for vulnerabilities |
| HTTP header security assessment |
| SSL/TLS configuration analysis via testssl.sh |
Credential and Brute-Force (2 tools)
Tool | Description |
| Brute-force testing (SSH, FTP, HTTP, SMB, MySQL, RDP, and more) |
| Store, retrieve, and search discovered credentials per session |
Exploitation (3 tools)
Tool | Description |
| Msfvenom payloads (reverse shell, bind shell, meterpreter) for 5 platforms |
| One-liner generators (bash, python, php, perl, nc, ruby, java, powershell) |
| Searchsploit-powered exploit database search |
Encoding and Analysis (4 tools)
Tool | Description |
| Multi-format encoding/decoding (base64, URL, hex, HTML, ROT13) |
| Hash type identification (MD5, SHA, bcrypt, NTLM, and more) |
| File type detection, strings extraction, hash computation |
| Fetch website content for analysis |
Output Parsing and Evidence (5 tools)
Tool | Description |
| Parse nmap output (text/XML) into structured JSON |
| Parse nikto, gobuster, dirb, hydra, sqlmap output |
| Timestamped evidence storage with categories |
| Generate structured reports (Markdown, JSON, text) |
| Download files with local storage |
Session Management (7 tools)
Tool | Description |
| Create new pentest session with name, description, target |
| List all sessions with metadata |
| Switch between active sessions |
| Current session status and summary |
| Delete session and all associated evidence |
| Command and evidence history for active session |
| Read recent output files for active session |
System (2 tools)
Tool | Description |
| Execute any shell command on the Kali Linux container |
| List available system resources and command examples |
Architecture
Docker Container (Kali Linux)
┌─────────────────────────────────┐
┌──────────────┐ SSE/stdio │ MCP Server (Python) │
│ Claude Code ├────────────►│ ├── Tool Router (server.py) │
│ or any MCP │ port 8000 │ ├── 36 Tool Handlers (tools.py)│
│ client │◄────────────┤ └── Session Manager │
└──────────────┘ │ │
│ Underlying Binaries │
│ nmap, sqlmap, hydra, nikto │
│ metasploit, amass, subfinder │
│ nuclei, ffuf, feroxbuster │
│ hashcat, john, gobuster │
│ testssl.sh, gospider, masscan │
│ crackmapexec, impacket, ... │
└─────────────────────────────────┘Transport options:
SSE (default): HTTP server on port 8000, ideal for Claude Desktop and persistent connections
stdio: Standard I/O, ideal for Claude Code CLI integration
Session data is persisted via Docker volume mount (./sessions:/app/sessions).
Project Structure
kali-mcp-server/
├── kali_mcp_server/
│ ├── server.py # MCP server, tool registration, transport config
│ ├── tools.py # 36 tool implementations
│ └── utils.py # Shared utilities
├── tests/
│ ├── test_server.py # Server integration tests
│ └── test_tools.py # Tool unit tests
├── Dockerfile # 5-layer Kali Linux image (apt, Go, pip, exploits, app)
├── docker-compose.yml # Production compose with volume mounts
├── pyproject.toml # Python project config (hatch build)
└── requirements.txt # Python dependenciesDocker Image Layers
The Dockerfile builds in 5 stages for optimal caching:
Layer | Contents |
1. System + apt tools | nmap, sqlmap, hydra, nikto, metasploit, amass, subfinder, nuclei, ffuf, hashcat, john, crackmapexec, impacket, aircrack-ng, bettercap, tcpdump, tshark, seclists |
2. Go tools | katana, gau, grpcurl, dalfox, waybackurls, kerbrute, chisel |
3. Python tools | impacket, certipy-ad, frida-tools, arjun, paramspider, wfuzz, commix, bloodhound |
4. Exploit toolkits | PayloadsAllTheThings, SSTImap, jwt_tool, XSStrike, GraphQLmap, smuggler, NoSQLMap, linpeas, pspy |
5. Application | Virtual environment, MCP server, dev tooling |
Contributing
See CONTRIBUTING.md for Docker build workflow, how to add new tools, and the PR process.
License
MIT : Copyright 2026 Hakan Topcu
Disclaimer: This tool is intended for authorized security testing only. Always obtain proper written authorization before testing systems you do not own or operate.
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/sudohakan/kali-mcp-server'
If you have feedback or need assistance with the MCP directory API, please join our Discord server