Setting Up MCP Servers for Penetration Testing Across Cyber Kill Chain Phases

Search for:

Setting Up MCP Servers for Penetration Testing Across Cyber Kill Chain Phases

View all MCP Servers

Why this server?
Enables interaction with enterprise security platforms (SIEM, EDR, MISP) for threat intelligence, security monitoring, and analysis, crucial for detection and response phases of the cyber kill chain.
Security Infrastructure MCP
Security Code Execution Hybrid
jmstar85
-
security
F
license
-
quality
A comprehensive implementation of Model Context Protocol servers enabling natural language interactions with security platforms including Splunk SIEM, CrowdStrike EDR, and Microsoft MISP for threat intelligence querying and analysis.
Last updated 2025-07-07
23
21
Why this server?
Provides access to a suite of common penetration testing tools for reconnaissance, vulnerability scanning, and API testing, addressing initial phases of the cyber kill chain.
Pentest Tools MCP Server
Penetration Testing API Testing Security
ch1nhpd
-
security
F
license
-
quality
An MCP server that integrates various penetration testing tools, enabling security professionals to perform reconnaissance, vulnerability scanning, and API testing through natural language commands in compatible LLM clients like Claude Desktop.
Last updated 2025-04-23
6
Why this server?
Integrates with Metasploit Framework, offering tools for exploitation, payload generation, and post-exploitation activities, directly mapping to the exploitation and installation phases.
MSFConsole MCP Server
Penetration Testing Security Autonomous Agents
LYFTIUM-INC
-
security
A
license
-
quality
Enables secure integration with Metasploit Framework for AI assistants, providing comprehensive access to penetration testing tools, module management, payload generation, and database operations. Designed for authorized security testing and defensive analysis with 28 specialized tools covering complete MSF functionality.
Last updated 2026-02-27
7
MIT
Why this server?
Allows execution of Kali Linux commands for various security testing operations like SQL injection and command execution, providing broad utility across different attack phases.
Kali Linux MCP Server
Penetration Testing Command Line Shell Access
sfz009900
A
security
F
license
-
quality
A tool that allows penetration testing through Kali Linux commands executed via a Multi-Conversation Protocol server, supporting security testing operations like SQL injection and command execution.
Last updated 2025-09-14
5
53
Why this server?
Facilitates network discovery and vulnerability scanning using Nmap, which is fundamental for the reconnaissance and weaponization phases.
Nmap-MCP
Security Autonomous Agents Penetration Testing
tri2703
-
security
F
license
-
quality
An agent-based network scanning system that uses Nmap for network discovery and leverages DeepSeek API to analyze scan results for security vulnerabilities and recommendations.
Last updated 2025-05-10
1
Why this server?
Enables AI-powered packet analysis and threat detection using Wireshark, vital for network reconnaissance (offensive) and monitoring/analysis (defensive).
Wireshark MCP Server
Security Monitoring Hybrid
PreistlyPython
-
security
-
license
-
quality
Enterprise network analysis platform that enables AI-powered packet analysis, threat detection, and network security capabilities through Claude Desktop integration.
Last updated 2025-08-21
1
Why this server?
Provides search and retrieval of security exploits and vulnerabilities from Exploit Database, supporting the weaponization and exploitation phases.
ExploitDB MCP Server
Penetration Testing Security Hybrid
Cyreslab-AI
-
security
A
license
-
quality
A Model Context Protocol server that enables AI assistants to search and retrieve information about security exploits and vulnerabilities from the Exploit Database, enhancing cybersecurity research capabilities.
Last updated 2025-11-02
19
MIT
Why this server?
Offers tools for reverse engineering and binary analysis using IDA Pro, essential for understanding malware (weaponization/installation) and custom application vulnerabilities.
IDA Pro MCP Server
Developer Tools Code Analysis Autonomous Agents
fdrechsler
A
security
A
license
-
quality
A Model Context Protocol server that enables AI assistants to interact with IDA Pro for reverse engineering and binary analysis tasks.
Last updated 2025-03-26
12
97
MIT
Why this server?
Enables YARA rule-based threat analysis on files and URLs, which is crucial for the detection and analysis phases of the cyber kill chain.
YaraFlux MCP Server
Security File Systems Code Execution
ThreatFlux
-
security
A
license
-
quality
A Model Context Protocol server that enables AI assistants to perform YARA rule-based threat analysis on files and URLs, supporting comprehensive rule management and detailed scanning results.
Last updated 2026-04-06
22
MIT