Metasploit is a penetration testing framework that makes discovering, exploiting, and sharing vulnerabilities quick and relatively painless. It's maintained by the security company Rapid7 and widely used by security professionals for security testing.
Provides tools for interacting with Metasploit Framework, including searching exploits and auxiliary modules, retrieving exploit details and payloads, managing database workspaces, viewing hosts and services, and running nmap scans with automatic result import.
Enables interaction with Metasploit Framework for authorized security testing, including exploit searches, payload management, network scanning with nmap, and database operations for penetration testing workflows.
Last updated
9
MIT
Why this server?
Checks for available exploits in the Metasploit framework as part of the exploit availability assessment tool.
A Model Context Protocol server providing security vulnerability intelligence tools including CVE lookup, EPSS scoring, CVSS calculation, exploit detection, and Python package vulnerability checking.
Last updated
8
9
MIT
Why this server?
Provides access to Metasploit module intelligence, including exploit analysis and framework integration.
Enables AI assistants to search and analyze vulnerabilities and exploits from multiple intelligence sources, including NVD, CISA KEV, ExploitDB, Metasploit, and more, with tools for CVE research, exploit analysis, and report generation.
Last updated
17
MIT
Why this server?
Allows the use of the Metasploit Framework for security assessments and exploit development.
Provides an MCP interface to a full Kali Linux environment running in Docker, enabling AI assistants to execute security tools like nmap, sqlmap, and metasploit. It allows users to start/stop the container, run shell commands, and transfer files for security testing and educational purposes.
Last updated
7
6
3
MIT
Why this server?
Provides access to Metasploit's msfvenom payload generator for creating custom exploit payloads in various formats.
Enables AI assistants to perform authorized penetration testing and security assessments by exposing 20+ Kali Linux security tools (nmap, sqlmap, gobuster, hydra, etc.) through a safe, validated interface with command allowlists, rate limiting, and input sanitization.
Last updated
19
1
Why this server?
Allows running Metasploit penetration testing commands in non-interactive mode, supporting security testing and exploitation workflows without entering interactive command mode.
A tool that allows penetration testing through Kali Linux commands executed via a Multi-Conversation Protocol server, supporting security testing operations like SQL injection and command execution.
Last updated
5
53
Why this server?
Recommends Metasploit as a tool for exploitation steps in the attack chain, particularly for known vulnerabilities like EternalBlue (CVE-2017-0144).
An AI-powered penetration testing reasoning engine that provides automated attack path planning, step-by-step guidance for CTFs/HTB challenges, and tool recommendations using Beam Search and MCTS algorithms.
Last updated
1
MIT
Why this server?
Integrates with Metasploit framework for automated exploit search, execution, and advanced penetration testing capabilities
An automated penetration testing framework that enables intelligent security assessments through reconnaissance, vulnerability scanning, and controlled exploitation. Features AI-driven workflow management with comprehensive reporting for authorized security testing.
Last updated
27
157
6
BSD 3-Clause
Why this server?
Integrates reconnaissance and exploitation workflows for security testing, including service detection, vulnerability validation, and exploit execution with safety controls
Provides security assessment methodology, tool documentation, and step-by-step workflows to guide AI agents through vulnerability scanning, static analysis, and penetration testing of applications and URLs.