An MCP server that turns Kali Linux into an AI-driven penetration testing powerhouse, enabling control of 40+ offensive security tools via natural language.
| Tool name | Description | Destructive? |
|---|---|---|
| nmap_scan | ✓ no | |
| nikto_scan | ✓ no | |
| sqlmap_scan | ✓ no | |
| gobuster_scan | ✓ no | |
| ffuf_scan | ✓ no |
| dirsearch_scan | ✓ no | |
| subfinder_scan | ✓ no | |
| searchsploit_scan | ✓ no | |
| trufflehog_scan | ✓ no | |
| netexec_scan⚠ | ⚠ yes | |
| bloodhound_python | ✓ no | |
| dnsx_scan | ✓ no | |
| chaos_client | ✓ no | |
| knockpy_scan | ✓ no | |
| findomain_scan | ✓ no | |
| sublist3r_scan | ✓ no | |
| bbot_scan | ✓ no | |
| oneforall_scan | ✓ no | |
| shuffledns_scan | ✓ no | |
| puredns_scan | ✓ no | |
| altdns_scan | ✓ no | |
| subjack_scan | ✓ no | |
| subzy_scan | ✓ no | |
| wafw00f_scan | ✓ no | |
| asnlookup_scan | ✓ no | |
| asnmap_scan | ✓ no | |
| mapcidr_scan | ✓ no | |
| feroxbuster_scan | ✓ no | |
| wfuzz_scan | ✓ no | |
| httprobe_scan | ✓ no | |
| waymore_scan | ✓ no | |
| naabu_scan | ✓ no | |
| rustscan_scan | ✓ no | |
| sandmap_scan | ✓ no | |
| subjs_scan | ✓ no | |
| getjs_scan | ✓ no | |
| secretfinder_scan | ✓ no | |
| mantra_scan | ✓ no | |
| gitgraber_scan | ✓ no | |
| aws_cli | ✓ no | |
| lazys3_scan | ✓ no | |
| s3scanner_scan | ✓ no | |
| commix_run⚠ | ⚠ yes | |
| fuxploider_run⚠ | ⚠ yes | |
| cmsmap_scan | ✓ no | |
| openredirectx_scan | ✓ no | |
| lfify_scan | ✓ no | |
| amass_enum | ✓ no | |
| assetfinder_scan | ✓ no | |
| httpx_check | ✓ no |