DMontgomery40 / pentest-mcpLinks
NOT for educational purposes: An MCP server for professional penetration testers including STDIO/HTTP/SSE support, nmap, go/dirbuster, nikto, JtR, wordlist building, and more.
☆47Updated 2 weeks ago
Alternatives and similar repositories for pentest-mcp
Users that are interested in pentest-mcp are comparing it to the libraries listed below
Sorting:
- A modular external attack surface mapping tool integrating tools for automated reconnaissance and bug bounty workflows.☆40Updated 2 months ago
- Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…☆86Updated 2 weeks ago
- AIHTTPAnalyzer revolutionizes web application security testing by bringing artificial intelligence capabilities to Burp Suite. This innov…☆56Updated 3 months ago
- Burp Suite Extension with MCP Server to enhance manual application security testing☆20Updated 3 weeks ago
- 🤖 LLM-powered agent for automated Google Dorking in bug hunting & pentesting.☆56Updated last month
- BurpSuite MCP Server: A powerful Model Context Protocol (MCP) server implementation for BurpSuite, providing programmatic access to Burp…☆41Updated last month
- A quick and dirty (and a little shitty) burp extension that uses cheap deepseek api to send request and response and maybe found somethin…☆33Updated 5 months ago
- ☆44Updated 3 months ago
- Collection of templates from various resources☆36Updated 2 months ago
- Vulnerable environments paired with ready-to-use Nuclei templates for security testing and learning! 🚀☆99Updated last week
- ☆86Updated 3 months ago
- Passive Web Vulnerability Detection Tool☆34Updated last month
- Exposor is a tool using internet search engines to detect exposed technologies with a unified syntax.☆57Updated 2 months ago
- BChecks collection for Burp Suite Professional☆98Updated last year
- CVE-2025-24016: RCE in Wazuh server! Remote Code Execution☆49Updated 4 months ago
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆36Updated 4 months ago
- An advanced JWT extraction & decoding tool for bug bounty hunters! 🏴☠️☆41Updated 3 months ago
- SQLMap wrapper that lets you use Interact.sh as a DNS server for exfiltrating data with zero configuration☆41Updated 2 months ago
- ai-based domain name generation☆93Updated 4 months ago
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆54Updated 4 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆105Updated last month
- ☆79Updated last month
- All-in-one security testing toolbox that brings together popular open source tools through a single MCP interface. Connected to an AI age…☆106Updated last week
- Dump paths & pages from Next.js Manifest☆14Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆54Updated 8 months ago
- A recon tool that uses ML to predict subdomains. Then returns those that resolve.☆93Updated 2 months ago
- Downloads Nuclei templates from a huge list of sources☆13Updated 2 weeks ago
- ☆36Updated last week
- MCP Server for Burp☆183Updated this week
- AI/LLM local model integration for analysis of reconftw results☆61Updated last month