Setting Up MCP Servers for Penetration Testing Across Cyber Kill Chain Phases

Glama

Search for:

Setting Up MCP Servers for Penetration Testing Across Cyber Kill Chain Phases

View all MCP Servers

Why this server?
Enables interaction with enterprise security platforms (SIEM, EDR, MISP) for threat intelligence, security monitoring, and analysis, crucial for detection and response phases of the cyber kill chain.
Security Infrastructure MCP Server
jmstar85
-
security
F
license
-
quality
A comprehensive implementation of Model Context Protocol servers enabling natural language interactions with security platforms including Splunk SIEM, CrowdStrike EDR, and Microsoft MISP for threat intelligence querying and analysis.
Last updated -
32
17
Python
Why this server?
Provides access to a suite of common penetration testing tools for reconnaissance, vulnerability scanning, and API testing, addressing initial phases of the cyber kill chain.
Pentest Tools MCP Server
ch1nhpd
-
security
F
license
-
quality
An MCP server that integrates various penetration testing tools, enabling security professionals to perform reconnaissance, vulnerability scanning, and API testing through natural language commands in compatible LLM clients like Claude Desktop.
Last updated -
4
Python
Why this server?
Integrates with Metasploit Framework, offering tools for exploitation, payload generation, and post-exploitation activities, directly mapping to the exploitation and installation phases.
MSFConsole MCP Server
LYFTIUM-INC
-
security
A
license
-
quality
Enables secure integration with Metasploit Framework for AI assistants, providing comprehensive access to penetration testing tools, module management, payload generation, and database operations. Designed for authorized security testing and defensive analysis with 28 specialized tools covering complete MSF functionality.
Last updated -
Python
MIT License
Why this server?
Allows execution of Kali Linux commands for various security testing operations like SQL injection and command execution, providing broad utility across different attack phases.
Kali Linux MCP Server
sfz009900
A
security
F
license
A
quality
A tool that allows penetration testing through Kali Linux commands executed via a Multi-Conversation Protocol server, supporting security testing operations like SQL injection and command execution.
Last updated -
5
39
TypeScript
Why this server?
Facilitates network discovery and vulnerability scanning using Nmap, which is fundamental for the reconnaissance and weaponization phases.
Nmap-MCP
tri2703
-
security
F
license
-
quality
An agent-based network scanning system that uses Nmap for network discovery and leverages DeepSeek API to analyze scan results for security vulnerabilities and recommendations.
Last updated -
Python
Why this server?
Enables AI-powered packet analysis and threat detection using Wireshark, vital for network reconnaissance (offensive) and monitoring/analysis (defensive).
Wireshark MCP Server
PreistlyPython
-
security
F
license
-
quality
Enterprise network analysis platform that enables AI-powered packet analysis, threat detection, and network security capabilities through Claude Desktop integration.
Last updated -
1
Python
Why this server?
Provides search and retrieval of security exploits and vulnerabilities from Exploit Database, supporting the weaponization and exploitation phases.
ExploitDB MCP Server
Cyreslab-AI
-
security
A
license
-
quality
A Model Context Protocol server that enables AI assistants to search and retrieve information about security exploits and vulnerabilities from the Exploit Database, enhancing cybersecurity research capabilities.
Last updated -
10
TypeScript
MIT License
Why this server?
Offers tools for reverse engineering and binary analysis using IDA Pro, essential for understanding malware (weaponization/installation) and custom application vulnerabilities.
IDA Pro MCP Server
fdrechsler
A
security
A
license
A
quality
A Model Context Protocol server that enables AI assistants to interact with IDA Pro for reverse engineering and binary analysis tasks.
Last updated -
12
63
Python
MIT License
Why this server?
Enables YARA rule-based threat analysis on files and URLs, which is crucial for the detection and analysis phases of the cyber kill chain.
YaraFlux MCP Server
ThreatFlux
-
security
A
license
-
quality
A Model Context Protocol server that enables AI assistants to perform YARA rule-based threat analysis on files and URLs, supporting comprehensive rule management and detailed scanning results.
Last updated -
15
Python
MIT License
Why this server?
Allows running BBOT security scans for comprehensive reconnaissance, aiding in the initial information gathering phase.
BBOT MCP Server
marlinkcyber
-
security
A
license
-
quality
Enables users to run and manage BBOT security scans through the MCP interface. Provides comprehensive tools for executing reconnaissance scans, monitoring progress, and retrieving results with support for concurrent scanning operations.
Last updated -
Python
MIT License