nmap-mcp
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@nmap-mcpscan 192.168.1.1 for open ports"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
nmap-mcp
A Model Context Protocol (MCP) server that provides comprehensive network scanning capabilities using nmap. Designed for security professionals and penetration testers, this server can execute scans either locally or via SSH on a remote Kali Linux box for security isolation.
Features
Multiple Scan Types: Port scanning, service detection, OS fingerprinting, vulnerability assessment
NSE Script Support: Run 600+ Nmap Scripting Engine scripts
Flexible Execution: Run locally or via SSH to a remote scanning host
Structured Output: Parsed XML results formatted as readable Markdown
Security-First: Input validation to prevent command injection
Stealth Options: Decoys, fragmentation, timing controls for evasive scanning
Related MCP server: Nmap MCP Server
Installation
# Clone the repository
git clone https://github.com/schwarztim/sec-nmap-mcp.git
cd sec-nmap-mcp
# Install dependencies
npm install
# Build
npm run buildConfiguration
Environment Variables
Variable | Description | Default |
| SSH host for remote execution |
|
| SSH username (optional) | Uses SSH config default |
| Path to SSH private key (optional) | Uses SSH config default |
| Set to |
|
Claude Desktop Configuration
Add to your claude_desktop_config.json:
{
"mcpServers": {
"nmap": {
"command": "node",
"args": ["/path/to/sec-nmap-mcp/dist/index.js"],
"env": {
"NMAP_SSH_HOST": "kali",
"NMAP_LOCAL": "false"
}
}
}
}For local execution:
{
"mcpServers": {
"nmap": {
"command": "node",
"args": ["/path/to/sec-nmap-mcp/dist/index.js"],
"env": {
"NMAP_LOCAL": "true"
}
}
}
}Available Tools
Basic Scanning
Tool | Description |
| Basic port scan with customizable options |
| Fast scan of common ports (-F) |
| Host discovery without port scanning (-sn) |
Advanced Scanning
Tool | Description |
| Service version detection (-sV) |
| OS fingerprinting (-O) |
| Full scan: SYN + version + OS + scripts |
| Evasive scan with decoys and fragmentation |
Security Assessment
Tool | Description |
| Run specific NSE scripts |
| Vulnerability assessment scripts |
Utility
Tool | Description |
| Check nmap availability and configuration |
| Parse existing nmap XML output |
Usage Examples
Basic Port Scan
Scan target 192.168.1.1 for open portsService Version Detection
Run a service scan on 10.0.0.0/24 ports 22,80,443Vulnerability Assessment
Run a vulnerability scan on target.example.comStealth Scan with Decoys
Perform a stealth scan on 192.168.1.100 using random decoysPing Sweep for Host Discovery
Find all live hosts on 192.168.1.0/24NSE Script Scan
Run the http-title and ssl-cert scripts on example.com port 443Security Considerations
Remote Execution (Recommended)
Running nmap via SSH to a dedicated Kali Linux box provides:
Isolation: Scans originate from a controlled environment
Privilege Management: Root access for advanced scans without local elevation
Audit Trail: Centralized logging on the scanning host
Network Segmentation: Scan traffic separated from workstation
Input Validation
The server validates all inputs to prevent command injection:
Targets are validated against allowed character patterns
Dangerous shell characters are blocked
Port specifications are strictly validated
Responsible Use
This tool is intended for:
Security assessments with proper authorization
Network inventory and management
Educational purposes
Always ensure you have proper authorization before scanning any network or system.
Development
# Watch mode for development
npm run dev
# Build for production
npm run build
# Run the server
npm startRequirements
Node.js 18+
nmap installed (locally or on SSH target)
SSH access to remote host (if using remote execution)
License
MIT License - see LICENSE for details.
Contributing
Contributions are welcome! Please feel free to submit a Pull Request.
Acknowledgments
Nmap - The Network Mapper
Model Context Protocol - AI tool integration standard
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/schwarztim/sec-nmap-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server