"An overview of penetration testing (pentest)" matching MCP servers:

• Professional Penetration

  AnGrY-Althaf

  -

  security

  F

  license

  -

  quality

  Provides access to over 40 industry-standard penetration testing tools, including Nmap, SQLMap, and Metasploit, within an isolated Kali Linux Docker container. It enables security professionals to perform comprehensive network reconnaissance, web application testing, and vulnerability research through natural language commands.

  Last updated 2026-03-02

• MCP Pentest

  adriyansyah-mf

  A

  security

  F

  license

  -

  quality

  An automated penetration testing framework that enables intelligent security assessments through reconnaissance, vulnerability scanning, and controlled exploitation. Features AI-driven workflow management with comprehensive reporting for authorized security testing.

  Last updated 2025-09-28

  27

  5

• Pentest MCP

  DMontgomery40

  A

  security

  A

  license

  -

  quality

  A Model Context Protocol server that integrates essential penetration testing tools (Nmap, Gobuster, Nikto, John the Ripper) into a unified natural language interface, allowing security professionals to execute and chain multiple tools through conversational commands.

  Last updated 2026-03-23

  9

  82

  130

  MIT

• MCP Server Pentest

  9olidity

  A

  security

  A

  license

  -

  quality

  A security testing tool that enables automated vulnerability detection including XSS and SQL injection, along with comprehensive browser interaction capabilities for web application penetration testing.

  Last updated 2025-03-24

  1

  12

  764

  22

  MIT

• Pentest MCP Server

  LayeSec006

  -

  security

  A

  license

  -

  quality

  Enables AI agents to perform autonomous penetration testing on any Linux distribution via SSH with persistent tmux sessions, supporting interactive tools like Metasploit, reverse shells, and complex multi-step security workflows.

  Last updated 2025-10-12

  17

  MIT

• Pentest Tools MCP Server

  ch1nhpd

  -

  security

  F

  license

  -

  quality

  An MCP server that integrates various penetration testing tools, enabling security professionals to perform reconnaissance, vulnerability scanning, and API testing through natural language commands in compatible LLM clients like Claude Desktop.

  Last updated 2025-04-23

  6

• Accessibility Testing MCP

  joe-watkins

  -

  security

  F

  license

  -

  quality

  Enables accessibility testing of websites and HTML content using axe-core and IBM Equal Access engines. Supports WCAG compliance checking, multi-viewport testing, and provides detailed violation reports with remediation guidance.

  Last updated 2025-12-07

  1

• Kali Pentest MCP Server

  SalmanFaris7

  -

  security

  -

  license

  -

  quality

  Provides secure access to penetration testing tools from Kali Linux including nmap, nikto, dirb, wpscan, and sqlmap for educational vulnerability assessment. Operates in a controlled Docker environment with target whitelisting to ensure ethical testing practices.

  Last updated 2025-10-01

  1

• MCP Testing Assistant

  mcpassistant

  -

  security

  -

  license

  -

  quality

  Enables automated testing and coverage reporting for MCP services with test execution, file generation, and mock service creation. Provides comprehensive testing infrastructure including Jest integration, coverage reports, and health checks for the MCP ecosystem.

  Last updated 2025-09-02

• API Testing MCP

  cocaxcode

  -

  security

  A

  license

  -

  quality

  A lightweight, local-first MCP server for executing HTTP requests and managing API collections and environments without cloud dependencies. It enables testing APIs, handling authentication, and importing OpenAPI specifications directly within MCP-compatible workflows.

  Last updated 2026-04-07

  1

  MIT

• MCP Frontend Testing Server

  StudentOfJS

  A

  security

  A

  license

  -

  quality

  Provides tools for frontend testing including code analysis, test generation, test execution, and React component testing for Jest and Cypress frameworks.

  Last updated 2025-04-24

  4

  26

  MIT

• Tox Testing MCP Server

  that1guy15

  A

  security

  F

  license

  -

  quality

  An MCP server that executes tox commands to run Python tests within a project using pytest, allowing users to run all tests or specific test groups, files, cases, or directories.

  Last updated 2025-01-19

  1

  5

• Local Testing Agent MCP Server

  marcelkurvers

  -

  security

  A

  license

  -

  quality

  A multi-language testing automation server that enables AI assistants to discover, plan, and execute tests across six major programming languages. It provides comprehensive tools for repository scanning, automated test execution, and detailed coverage reporting.

  Last updated 2025-12-12

  MIT

• MCP of MCPs

  eliavamar

  -

  security

  A

  license

  -

  quality

  A meta-server that aggregates multiple MCP servers into a single interface, reducing token usage by 98%+ through progressive tool discovery and direct code execution that processes data between tools without consuming context window space.

  Last updated 2026-03-18

  16

  9

  Apache 2.0

• mcp-chain-of-thought

  liorfranko

  A

  security

  A

  license

  -

  quality

  mcp-chain-of-thought

  Last updated 2025-05-07

  15

  44

  21

  MIT

• MCP Kali Pentest

  Root1856

  -

  security

  F

  license

  -

  quality

  AI-powered autonomous penetration testing framework with 80+ professional security tools across reconnaissance, web application testing, exploitation, and forensics. Integrates with LM Studio for intelligent vulnerability assessment and automated security testing workflows.

  Last updated 2025-11-05

  2

• Chain of Draft Thinking

  bsmi021

  A

  security

  A

  license

  -

  quality

  Chain of Draft Server is a powerful AI-driven tool that helps developers make better decisions through systematic, iterative refinement of thoughts and designs. It integrates seamlessly with popular AI agents and provides a structured approach to reasoning, API design, architecture decisions, code r

  Last updated 2025-03-26

  1

  29

  24

  MIT

• Des MCP Server Testing MCP

  Traia-IO

  -

  security

  F

  license

  -

  quality

  A standardized MCP server designed for testing integration with the Des MCP Server Testing API. It allows AI agents to interact with testing endpoints using tools implemented via the Model Context Protocol.

  Last updated 2026-03-16

• PenTest MCP Server

  MohitSahoo

  -

  security

  F

  license

  -

  quality

  An AI-powered penetration testing server that integrates over 30 security tools with Groq LLM analysis for automated vulnerability scanning, triage, and reporting. It enables users to perform comprehensive security assessments through natural language natively within Claude Desktop.

  Last updated 2026-04-10

• Chain of Thought MCP Server

  beverm2391

  A

  security

  F

  license

  -

  quality

  An MCP server that uses Groq's API to expose raw chain-of-thought tokens from Qwen's qwq model, enabling LLMs to think step-by-step before responding.

  Last updated 2025-03-23

  1

  12

• Chain of Draft (CoD) MCP

  stat-guy

  A

  security

  F

  license

  -

  quality

  Implements the Chain of Draft reasoning approach to generate minimalistic intermediate reasoning outputs while solving tasks, significantly reducing token usage while maintaining accuracy.

  Last updated 2025-03-04

  7

  13

• Symphony of One MCP

  ai-wes

  A

  security

  F

  license

  -

  quality

  A multi-agent orchestration system that enables multiple Claude instances to collaborate through a centralized hub with a shared workspace and real-time communication. It features integrated task management, role assignment, and persistent memory to facilitate complex, synchronized agent workflows.

  Last updated 2025-07-01

  12

  6

  4

• mc-server-clash-of-clans

  Saunved

  -

  security

  F

  license

  -

  quality

  MCP server for the Clash of Clans API. Can get player, clan information, analyze ongoing wars, as well as war logs (provided they are public).

  Last updated 2025-04-25

  5

  1

• Chain of Draft Prompt Tool

  brendancopley

  -

  security

  F

  license

  -

  quality

  Transforms prompts into Chain of Draft (CoD) or Chain of Thought (CoT) format to enhance LLM reasoning quality while reducing token usage by up to 92.4%, supporting multiple LLM providers including Claude, GPT, Ollama, and local models.

  Last updated 2025-09-08

  10

  18

• Security Testing MCP Server

  avi686

  -

  security

  F

  license

  -

  quality

  Provides penetration testing tools including nmap, nikto, sqlmap, wpscan, and exploit database searches for educational and authorized security testing purposes using Kali Linux tools.

  Last updated 2025-09-25

• mcp-animal-of-the-day

  punkpeye

  A

  security

  A

  license

  -

  quality

  Explore a new amazing animal every single day!

  Last updated 2025-11-08

  1

  21

  MIT

• Kali Pentest MCP Server

  SalmanFaris7

  -

  security

  -

  license

  -

  quality

  Provides secure access to Kali Linux penetration testing tools including nmap, nikto, dirb, wpscan, and sqlmap for educational vulnerability assessment on whitelisted targets. Runs in a controlled Docker environment and includes reconnaissance capabilities for authorized security testing.

  Last updated 2025-10-01

  1

• Adaptive Graph of Thoughts MCP

  SaptaDey

  -

  security

  A

  license

  -

  quality

  A scientific reasoning framework that leverages graph structures and the Model Context Protocol (MCP) to process complex scientific queries through an Advanced Scientific Reasoning Graph-of-Thoughts (ASR-GoT) approach.

  Last updated 2026-03-24

  28

  MIT

• Kali MCP Pentest Server

  andrew-stclair

  -

  security

  F

  license

  -

  quality

  Enables users to perform security testing and penetration testing tasks through a Docker-based API that provides access to popular security tools like nmap, nikto, sqlmap, wpscan, dirb, and searchsploit. Designed for educational purposes with input sanitization and non-root execution for safer pentesting workflows.

  Last updated 2026-03-10

• Java Testing Agent

  ALGeek01

  -

  security

  F

  license

  -

  quality

  Automates Java Maven testing workflows with decision table-based test generation, security vulnerability scanning, JaCoCo coverage analysis, and Git automation.

  Last updated 2025-11-16

• Tripura Board of Secondary

  ag2-mcp-servers

  -

  security

  F

  license

  -

  quality

  An MCP server for interacting with the Tripura State Board of Secondary Education API, auto-generated using AG2's MCP builder to enable conversational access to education data.

  Last updated 2025-07-15

• Browser Testing MCP Server

  RomanGod6

  -

  security

  F

  license

  -

  quality

  Enables automated browser testing of web applications using Playwright, supporting user interactions, form submissions, console monitoring, network request inspection, and visual verification through screenshots.

  Last updated 2025-08-09

• AI-Driven Remediation Testing

  Purv123

  -

  security

  F

  license

  -

  quality

  Orchestrates end-to-end testing of AI-powered incident remediation workflows through declarative YAML scenarios, fault injection, AI response evaluation, and automated command execution with comprehensive reporting.

  Last updated 2025-12-07

• Proof of Invention

  elmariachi111

  -

  security

  A

  license

  -

  quality

  Proof of Invention

  Last updated 2025-05-26

  4

  MIT
• 

  Levels of Selfofficial

  levelsofself

  -

  security

  A

  license

  -

  quality

  Provides access to thousands of interactive self-awareness scenarios, behavioral archetypes, and breakthrough exercises from the Levels of Self development game. It enables AI assistants to guide users through pattern recognition and developmental coaching across seven levels of self-awareness.

  Last updated 2026-04-12

  7

  MIT

• Atom-of-thoughts

  kbsooo

  A

  security

  A

  license

  -

  quality

  AoT MCP server enables AI models to solve complex reasoning problems by decomposing them into independent, reusable atomic units of thought, featuring a powerful decomposition-contraction mechanism that allows for deep exploration of problem spaces while maintaining high confidence in conclusions.

  Last updated 2025-05-14

  3

  56

  MIT

• Playwright Accessibility

  PashaBoiko

  A

  security

  F

  license

  -

  quality

  Enables comprehensive WCAG 2.0/2.1 accessibility testing of web applications using Playwright and axe-core. Supports natural language element finding, auto-discovery of interactive components, and generates detailed compliance reports with screenshots.

  Last updated 2025-12-02

  2

• MCP Java Testing Agent

  amyfan7

  -

  security

  F

  license

  -

  quality

  Automates Java/Maven test generation, JaCoCo coverage analysis, and Checkstyle checking through MCP tools. Enables iterative improvement of test coverage and code style until quality goals are met.

  Last updated 2025-11-22

  1

• Databricks MCP Server

  ksavchyn

  -

  security

  F

  license

  -

  quality

  Enables interaction with Databricks workspaces using On-Behalf-Of authentication to test connectivity, retrieve user information, and perform operations on behalf of authenticated users.

  Last updated 2025-11-20

  1

• MCP Unit Test Sensei

  kourtni

  -

  security

  F

  license

  -

  quality

  An MCP server that enforces unit testing standards by linting code and guiding agentic coding tools (like Gemini CLI or Claude Code) to follow best practices in test-driven development.

  Last updated 2025-07-26

  3

• Australian Bureau of

  seansoreilly

  A

  security

  F

  license

  -

  quality

  Provides access to the Australian Bureau of Statistics (ABS) Data API. This server allows AI assistants to query and analyze ABS statistical data.

  Last updated 2024-12-26

  2

  1

  8

• League of Legends Stats MCP

  ag2-mcp-servers

  -

  security

  F

  license

  -

  quality

  An MCP Server that provides access to League of Legends statistics via the SportData.io API, allowing agents to query and analyze LoL competitive gaming data.

  Last updated 2025-07-16

• YNAB MCP Server

  chrisguidry

  -

  security

  F

  license

  -

  quality

  An MCP server that provides Large Language Models with access to YNAB (You Need A Budget) budgets, allowing them to fetch budget data including accounts, categories, and category groups.

  Last updated 2026-02-18

  5

• OmniFocus MCP Server

  mojenmojen

  -

  security

  F

  license

  -

  quality

  Enables AI-powered task management in OmniFocus with support for project reviews, planned dates, repeating tasks, custom perspectives, hierarchical subtasks, and advanced filtering. Perfect for Claude AI integration with comprehensive CRUD operations for tasks, projects, and folders.

  Last updated 2026-03-24

  2

• League of Legends Mock Match

  onepersonunicorn

  -

  security

  A

  license

  -

  quality

  AI-powered League of Legends tool that simulates mock matches and compares summoners based on historical performance data.

  Last updated 2025-07-18

  5

  MIT

• Zypin MCP

  zypin-testing

  A

  security

  -

  license

  -

  quality

  A lightweight MCP server for browser automation using Playwright with essential tools for navigation, form interaction, and web scraping. Provides 16 core browser automation tools with minimal setup and fast performance.

  Last updated 2025-09-24

  16

• Word of the Day MCP Server

  Traves-Theberge

  A

  security

  A

  license

  -

  quality

  Provides comprehensive word definitions, pronunciations, meanings, and examples for any English word using the Free Dictionary API. Includes a random word-of-the-day feature with difficulty levels for vocabulary building.

  Last updated 2025-08-17

  2

  2

  MIT

• Eye of Sauron - Discord Bot

  DawnReaverWOWS

  -

  security

  A

  license

  -

  quality

  Enables AI assistants to control Discord servers with 93 tools for server management, moderation, voice TTS, AI chat via OpenRouter, and World of Warships stats lookup through the Model Context Protocol.

  Last updated 2026-02-08

  1,159

  MIT

• World of Warships Ship Data

  amxkifir

  -

  security

  -

  license

  -

  quality

  Enables users to search, compare, and retrieve detailed information about World of Warships ships using the official Wargaming.net API. Supports filtering by nation, type, and tier with multi-language support and intelligent caching.

  Last updated 2025-09-20

• Echo MCP Server

  piebro

  A

  security

  A

  license

  -

  quality

  A simple server implementing the Model Context Protocol (MCP) that echoes messages back, designed for testing MCP clients.

  Last updated 2025-04-17

  1

  2

  MIT