Capture The Flag (CTF) cybersecurity competitions and challenges

Glama

Search for:

Capture The Flag (CTF) cybersecurity competitions and challenges

View all MCP Servers

Why this server?
This server is extremely relevant as its description specifically mentions 'AI-powered penetration testing reasoning engine' and includes 'step-by-step guidance for CTFs/HTB challenges,' aligning directly with the user's search for 'CTF'.
PentestThinkingMCP
LT7T
A
security
A
license
A
quality
An AI-powered penetration testing reasoning engine that provides automated attack path planning, step-by-step guidance for CTFs/HTB challenges, and tool recommendations using Beam Search and MCTS algorithms.
Last updated -
1
MIT License
Why this server?
This server directly integrates commands from Kali Linux, the standard operating system for ethical hacking and penetration testing, which are essential skills for competitive CTF events.
Kali Linux MCP Server
sfz009900
A
security
F
license
A
quality
A tool that allows penetration testing through Kali Linux commands executed via a Multi-Conversation Protocol server, supporting security testing operations like SQL injection and command execution.
Last updated -
5
48
Why this server?
This server focuses on 'stateful binary analysis and pwn research,' which is crucial for solving 'pwn' or exploitation challenges commonly found in CTFs.
Pwno MCP
0xSensei
-
security
F
license
-
quality
Enables stateful binary analysis and pwn research through GDB/pwndbg debugging capabilities. Supports loading binaries, setting breakpoints, memory analysis, compilation with sanitizers, and process management for vulnerability research.
Last updated -
Why this server?
This server provides access to powerful security testing utilities, mentioning tools like 'Nuclei, Nmap, SQLMap, and FFUF' that are widely used in CTF challenges and vulnerability assessment.
SecOps MCP
aisacAdmin
-
security
A
license
-
quality
Provides access to 13+ penetration testing and security audit tools through a unified MCP interface. Enables security professionals to perform vulnerability scanning, web fuzzing, network reconnaissance, and other security assessments through containerized tools like Nuclei, Nmap, SQLMap, and FFUF.
Last updated -
MIT License
Why this server?
This server integrates with Ghidra, a popular tool for reverse engineering and binary analysis, skills frequently required for forensic and exploitation challenges in CTFs.
GhidraMCP
pr0cf5
-
security
A
license
-
quality
Enables LLMs to autonomously reverse engineer applications by exposing Ghidra's core functionality through MCP tools. Supports decompiling binaries, analyzing code structure, and automatically renaming methods and data.
Last updated -
2
Apache 2.0
Why this server?
This server provides a bridge to the 'Metasploit Framework,' the world's most used penetration testing tool, making it highly relevant for practicing exploitation techniques necessary for CTF.
Metasploit MCP Server
GH05TCREW
-
security
A
license
-
quality
Provides a bridge between large language models and the Metasploit Framework, enabling AI assistants to access and control penetration testing functionality through natural language.
Last updated -
302
Apache 2.0
Why this server?
This server integrates with BurpSuite, the industry standard tool for web application security testing, essential for web-based challenges often present in CTFs.
BurpSuite MCP Server
X3r0K
-
security
A
license
-
quality
BurpSuite MCP Server: A powerful Model Context Protocol (MCP) server implementation for BurpSuite, providing programmatic access to Burp's core functionalities.
Last updated -
52
MIT License
Why this server?
This server offers secure access to 'Kali Linux security tools' for 'authorized security research and penetration testing workflows,' making it relevant to the CTF context.
Kali Linux MCP Server
pellax
-
security
F
license
-
quality
Provides secure access to Kali Linux security tools through a dockerized environment for authorized penetration testing and defensive security. Enables network scanning, web application testing, system enumeration, and credential testing with built-in input sanitization and network restrictions.
Last updated -
Why this server?
As an 'automated penetration testing framework,' this server provides functionality directly applicable to the core activities performed during a cybersecurity challenge like a CTF.
MCP Pentest
adriyansyah-mf
-
security
F
license
-
quality
An automated penetration testing framework that enables intelligent security assessments through reconnaissance, vulnerability scanning, and controlled exploitation. Features AI-driven workflow management with comprehensive reporting for authorized security testing.
Last updated -
27
1
Why this server?
The server offers a suite of security tools for 'security auditing, penetration testing, and compliance validation' including 'Semgrep, Trivy, Gitleaks, and OWASP ZAP,' providing resources useful for analyzing code and systems in a CTF.
MCP Shamash
NeoTecDigital
-
security
F
license
-
quality
Enables security auditing, penetration testing, and compliance validation with tools like Semgrep, Trivy, Gitleaks, and OWASP ZAP. Features strict project boundary enforcement and supports OWASP, CIS, and NIST compliance frameworks.
Last updated -
7