Metasploit is a penetration testing framework that makes discovering, exploiting, and sharing vulnerabilities quick and relatively painless. It's maintained by the security company Rapid7 and widely used by security professionals for security testing.
Provides an MCP interface to a full Kali Linux environment running in Docker, enabling AI assistants to execute security tools like nmap, sqlmap, and metasploit. It allows users to start/stop the container, run shell commands, and transfer files for security testing and educational purposes.
Last updated
7
7
3
MIT
Why this server?
Provides access to Metasploit module intelligence, including exploit analysis and framework integration.
Enables AI assistants to search and analyze vulnerabilities and exploits from multiple intelligence sources, including NVD, CISA KEV, ExploitDB, Metasploit, and more, with tools for CVE research, exploit analysis, and report generation.
Last updated
17
MIT
Why this server?
Provides access to Metasploit exploit modules, including details on usage, targets, and source URLs. Allows querying exploits specifically from the Metasploit framework.
Gives AI assistants access to the Exploit Intelligence Platform for vulnerability and exploit intelligence. Supports searching CVEs, exploits, and generating pentest findings.
Last updated
17
MIT
Why this server?
Checks for available exploits in the Metasploit framework as part of the exploit availability assessment tool.
A Model Context Protocol server providing security vulnerability intelligence tools including CVE lookup, EPSS scoring, CVSS calculation, exploit detection, and Python package vulnerability checking.
Last updated
8
9
MIT
Why this server?
Provides tools for interacting with Metasploit Framework, including searching exploits and auxiliary modules, retrieving exploit details and payloads, managing database workspaces, viewing hosts and services, and running nmap scans with automatic result import.
Enables interaction with Metasploit Framework for authorized security testing, including exploit searches, payload management, network scanning with nmap, and database operations for penetration testing workflows.
Last updated
9
MIT
Why this server?
Recommends Metasploit as a tool for exploitation steps in the attack chain, particularly for known vulnerabilities like EternalBlue (CVE-2017-0144).
An AI-powered penetration testing reasoning engine that provides automated attack path planning, step-by-step guidance for CTFs/HTB challenges, and tool recommendations using Beam Search and MCTS algorithms.
Last updated
1
MIT
Why this server?
Integrates reconnaissance and exploitation workflows for security testing, including service detection, vulnerability validation, and exploit execution with safety controls
Provides security assessment methodology, tool documentation, and step-by-step workflows to guide AI agents through vulnerability scanning, static analysis, and penetration testing of applications and URLs.
Last updated
1
MIT
Why this server?
Allows running Metasploit penetration testing commands in non-interactive mode, supporting security testing and exploitation workflows without entering interactive command mode.
A tool that allows penetration testing through Kali Linux commands executed via a Multi-Conversation Protocol server, supporting security testing operations like SQL injection and command execution.
Last updated
5
55
Why this server?
Provides access to Metasploit framework for exploit development and testing through the kali_exploitation tool.
Provides access to 20+ Kali Linux penetration testing tools through isolated Docker containers, enabling network scanning, vulnerability assessment, password cracking, web security testing, and forensics through natural language commands.