PyRIT MCP Server
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@PyRIT MCP ServerStart a new red-team engagement"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
PyRIT MCP Server
An MCP (Model Context Protocol) server that exposes Microsoft's PyRIT AI red-teaming framework as a set of structured, discoverable tools for MCP-compatible agents (Claude Code, Antigravity, etc.).
This server is an execution layer only. It does not contain pentesting methodology, does not decide which attack to run, and does not hardcode attack sequences. The calling agent is responsible for all planning and decision-making; this server just executes what it's told, against authorized targets, and returns structured results.
Quickstart
uv sync
uv run python server.pyThis starts the server on stdio, ready to be attached to an MCP client. See docs/examples.md for Claude Code / Antigravity client configuration.
Related MCP server: pentestMCP
What it does
Engagements: independent, stateful red-team sessions (
create_engagement,list_engagements,get_engagement,close_engagement).Targets: configure any REST/JSON chat endpoint as an attack target (
configure_target,get_target,validate_target).Attacks: run/continue/cancel any of PyRIT's attack strategies against a target (
list_attack_strategies,run_attack,continue_attack,cancel_attack).Scoring: score any response with a PyRIT scorer (
score_response,get_scores).Reports: generate JSON/Markdown/HTML reports from engagement findings, scores, and timeline (
generate_report,list_reports,export_report).Discovery: introspect what's available (
get_server_info,get_pyrit_version,list_capabilities).Findings: record and list findings on an engagement (
add_finding,list_findings).
See docs/tool_reference.md for the full tool reference.
Documentation
Requirements
Python 3.12+
uv (or Poetry)
Testing
uv run pytestSecurity notes
This server is designed for authorized AI security assessments only. It stores no API keys in reports, redacts auth tokens/headers in every serialized view, and never logs secret values. It sends real HTTP requests to whatever endpoint you configure as a target -- only point it at systems you are authorized to test.
Contributing
Contributions are welcome. See CONTRIBUTING.md.
License
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/Vectorindia1/pyritmcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server