Skip to main content
Glama

Open-Source MCP servers

Production-ready MCP servers that extend AI capabilities through file access, database connections, API integrations, and other contextual services.

X
11,291 servers. Last updated -

Matching MCP tools:

Matching MCP servers:

  • Kali Linux MCP Server

    sfz009900
    A
    security
    -
    license
    A
    quality
    A tool that allows penetration testing through Kali Linux commands executed via a Multi-Conversation Protocol server, supporting security testing operations like SQL injection and command execution.
    Last updated -
    5
    48

  • MCP Pentest

    adriyansyah-mf
    A
    security
    -
    license
    A
    quality
    An automated penetration testing framework that enables intelligent security assessments through reconnaissance, vulnerability scanning, and controlled exploitation. Features AI-driven workflow management with comprehensive reporting for authorized security testing.
    Last updated -
    27
    1

  • Zypin MCP

    zypin-testing
    A
    security
    -
    license
    A
    quality
    A lightweight MCP server for browser automation using Playwright with essential tools for navigation, form interaction, and web scraping. Provides 16 core browser automation tools with minimal setup and fast performance.
    Last updated -
    16

  • Echo MCP Server

    piebro
    A
    security
    -
    license
    A
    quality
    A simple server implementing the Model Context Protocol (MCP) that echoes messages back, designed for testing MCP clients.
    Last updated -
    1
    2
    MIT License

  • PentestThinkingMCP

    LT7T
    A
    security
    -
    license
    A
    quality
    An AI-powered penetration testing reasoning engine that provides automated attack path planning, step-by-step guidance for CTFs/HTB challenges, and tool recommendations using Beam Search and MCTS algorithms.
    Last updated -
    1
    MIT License

Interested in MCP?

Join the MCP community for support and updates.

RedditDiscord

  • MCP Shamash

    NeoTecDigital
    A
    security
    -
    license
    A
    quality
    Enables security auditing, penetration testing, and compliance validation with tools like Semgrep, Trivy, Gitleaks, and OWASP ZAP. Features strict project boundary enforcement and supports OWASP, CIS, and NIST compliance frameworks.
    Last updated -
    7

  • System Information MCP Server

    dknell
    A
    security
    -
    license
    A
    quality
    Provides real-time system metrics and information through a Model Context Protocol interface, enabling access to CPU usage, memory statistics, disk information, network status, and running processes.
    Last updated -
    7
    2
    • Apple
    • Linux

  • MCP Frontend Testing Server

    StudentOfJS
    A
    security
    -
    license
    A
    quality
    Provides tools for frontend testing including code analysis, test generation, test execution, and React component testing for Jest and Cypress frameworks.
    Last updated -
    4
    24
    MIT License

  • System Information MCP Server

    ai-mcp-garage
    A
    security
    -
    license
    A
    quality
    Provides comprehensive system diagnostics and hardware analysis through 10 specialized tools for troubleshooting and environment monitoring. Offers targeted information gathering for CPU, memory, network, storage, processes, and security analysis across Windows, macOS, and Linux platforms.
    Last updated -
    10
    MIT License
    • Apple
    • Linux

  • Tox Testing MCP Server

    that1guy15
    A
    security
    -
    license
    A
    quality
    An MCP server that executes tox commands to run Python tests within a project using pytest, allowing users to run all tests or specific test groups, files, cases, or directories.
    Last updated -
    5

  • Pentest MCP

    DMontgomery40
    A
    security
    -
    license
    A
    quality
    A Model Context Protocol server that integrates essential penetration testing tools (Nmap, Gobuster, Nikto, John the Ripper) into a unified natural language interface, allowing security professionals to execute and chain multiple tools through conversational commands.
    Last updated -
    9
    25
    89
    MIT License
    • Linux
    • Apple

  • MCP Server Pentest

    9olidity
    A
    security
    -
    license
    A
    quality
    A security testing tool that enables automated vulnerability detection including XSS and SQL injection, along with comprehensive browser interaction capabilities for web application penetration testing.
    Last updated -
    12
    633
    20
    MIT License

  • FedMCP - Federal Parliamentary Information

    northernvariables
    -
    security
    A
    license
    -
    quality
    Provides access to Canadian federal parliamentary data (debates, bills, MPs, votes, Hansard transcripts) and legal information (case law and legislation through CanLII) for research and analysis.
    Last updated -
    MIT License

  • MCP-PST-Server

    arch3rPro
    -
    security
    A
    license
    -
    quality
    Enables AI-assisted penetration testing by connecting MCP clients to a Windows API server for executing penetration testing tools like nmap, ffuf, nuclei, and other security tools. Allows AI agents to perform automated security assessments, solve CTF challenges, and assist with ethical hacking tasks through natural language commands.
    Last updated -
    2
    MIT License

  • MCP Security Tools Suite

    Ap6pack
    -
    security
    -
    license
    -
    quality
    Enables ethical security testing and attack surface management through SSL certificate validation, CVE queries, subdomain enumeration, security header analysis, and comprehensive reconnaissance capabilities. Designed for authorized penetration testing workflows with responsible disclosure practices.
    Last updated -
    • Apple
    • Linux

  • Kali MCP Server

    DurkDiggler
    -
    security
    -
    license
    -
    quality
    Enables LLMs to execute common security testing tools like nmap, sqlmap, hydra, and metasploit through a secure Docker container. Provides controlled access to penetration testing utilities with configurable timeouts and tool discovery capabilities.
    Last updated -

  • HexStrike AI MCP Server

    b-bogus
    -
    security
    -
    license
    -
    quality
    AI-powered cybersecurity automation platform with 150+ security tools and 12+ autonomous AI agents for penetration testing, vulnerability assessment, and bug bounty hunting. Enables comprehensive security testing through intelligent tool selection and automated workflows.
    Last updated -

  • Metasploit MCP Server

    GH05TCREW
    -
    security
    -
    license
    -
    quality
    Provides a bridge between large language models and the Metasploit Framework, enabling AI assistants to access and control penetration testing functionality through natural language.
    Last updated -
    302
    Apache 2.0
    • Linux
    • Apple

  • HackerMCP

    R3verseIN
    -
    security
    -
    license
    -
    quality
    A module that enables AI assistants to access and utilize common penetration testing and security tools like Nmap and Metasploit through a simple interface.
    Last updated -
    3
    GPL 3.0

  • MESH Vulnerability Scanner

    DynamicEndpoints
    -
    security
    -
    license
    -
    quality
    Scans MESH by Viscount systems for default credential vulnerabilities, performs security assessments, and generates compliance reports for authorized penetration testing and security research purposes.
    Last updated -
    1

  • MCP Kali Server

    atimevil
    -
    security
    -
    license
    -
    quality
    Connects MCP clients to a Kali Linux terminal API, enabling AI-assisted penetration testing, CTF challenge solving, and automated security reconnaissance through command execution.
    Last updated -
    MIT License

  • Kali Pentest MCP Server

    SalmanFaris7
    -
    security
    -
    license
    -
    quality
    Provides secure access to penetration testing tools from Kali Linux including nmap, nikto, dirb, wpscan, and sqlmap for educational vulnerability assessment. Operates in a controlled Docker environment with target whitelisting to ensure ethical testing practices.
    Last updated -

  • Kali Pentest MCP Server

    SalmanFaris7
    -
    security
    -
    license
    -
    quality
    Provides secure access to Kali Linux penetration testing tools including nmap, nikto, dirb, wpscan, and sqlmap for educational vulnerability assessment on whitelisted targets. Runs in a controlled Docker environment and includes reconnaissance capabilities for authorized security testing.
    Last updated -

  • MSFConsole MCP Server

    LYFTIUM-INC
    -
    security
    -
    license
    -
    quality
    Enables secure integration with Metasploit Framework for AI assistants, providing comprehensive access to penetration testing tools, module management, payload generation, and database operations. Designed for authorized security testing and defensive analysis with 28 specialized tools covering complete MSF functionality.
    Last updated -
    3
    MIT License

  • ikaliMCP Server

    whobcode
    -
    security
    -
    license
    -
    quality
    Provides a secure interface for AI assistants to interact with penetration testing tools like nmap, hydra, sqlmap, and nikto for educational cybersecurity purposes. Includes input sanitization and runs in a Docker container with Kali Linux tools for authorized testing scenarios.
    Last updated -
    • Apple

  • Kali MCP Pentest Server

    andrew-stclair
    -
    security
    -
    license
    -
    quality
    Enables users to perform security testing and penetration testing tasks through a Docker-based API that provides access to popular security tools like nmap, nikto, sqlmap, wpscan, dirb, and searchsploit. Designed for educational purposes with input sanitization and non-root execution for safer pentesting workflows.
    Last updated -
    • Linux

  • Kali MCP Server

    DurkDiggler
    -
    security
    -
    license
    -
    quality
    Enables LLMs to execute Kali Linux security tools like nmap, sqlmap, and hydra in a secure, sandboxed environment. Provides both MCP and HTTP API interfaces for penetration testing and security assessment tasks.
    Last updated -

  • MSFConsole MCP Server

    PreistlyPython
    -
    security
    -
    license
    -
    quality
    Enables AI assistants to interact with Metasploit Framework through 28 comprehensive tools for penetration testing and security analysis. Provides secure, structured access to MSF modules, database operations, session management, and payload generation capabilities.
    Last updated -
    2
    MIT License

  • PentestThinkingMCP

    ibrahimsaleem
    -
    security
    -
    license
    -
    quality
    Enables automated penetration testing workflow planning using Beam Search and Monte Carlo Tree Search algorithms to generate step-by-step attack paths, score vulnerabilities, and recommend tools for reconnaissance, exploitation, and privilege escalation tasks.
    Last updated -
    24
    MIT License

  • Kali MCP Server

    letchupkt
    -
    security
    -
    license
    -
    quality
    Enables AI assistants to execute penetration testing commands and security tools on Kali Linux remotely. Supports automated reconnaissance, vulnerability scanning, and CTF solving through integration with 25+ offensive security tools like nmap, gobuster, and nuclei.
    Last updated -
    12
    MIT License
    • Linux