NOT for educational purposes: An MCP server for professional penetration testers including STDIO/HTTP/SSE support, nmap, go/dirbuster, nikto, JtR, hashcat, wordlist building, and more.
☆125Feb 19, 2026Updated 2 weeks ago
Alternatives and similar repositories for pentest-mcp
Users that are interested in pentest-mcp are comparing it to the libraries listed below
Sorting:
- the most basic DLL ever to pop a cmd.☆24Jul 11, 2020Updated 5 years ago
- A slick, modern, privacy-focused web interface for viewing and analyzing Nuclei scan results. Built for pentesters & bug hunters who want…☆27Mar 31, 2025Updated 11 months ago
- MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. In…☆17Feb 19, 2026Updated 2 weeks ago
- A powerful Burp extension to make bounty rain☆14Feb 1, 2022Updated 4 years ago
- Just a git repo for the sleepmask detection rule i found in https://codex-7.gitbook.io/codexs-terminal-window/blue-team/detecting-cobalt-…☆16Jun 4, 2025Updated 9 months ago
- Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…☆14Feb 23, 2022Updated 4 years ago
- Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers☆18Mar 19, 2025Updated 11 months ago
- ☆12Aug 29, 2021Updated 4 years ago
- The Shodan MCP Server by ADEO Cybersecurity Services provides cybersecurity professionals with streamlined access to Shodan's powerful re…☆20Mar 22, 2025Updated 11 months ago
- c# reverse shell poc☆26Dec 22, 2025Updated 2 months ago
- Beacon Object Files (BOF) for Cobalt Strike.☆32Aug 23, 2024Updated last year
- WIP: A MCP server to search, install, uninstall all your MCP servers or services for your Claude App (or more)☆16Jan 6, 2025Updated last year
- ☆18Nov 2, 2025Updated 4 months ago
- My experiments in weaponizing ONOS applications (https://github.com/opennetworkinglab/onos)☆20Nov 10, 2024Updated last year
- This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…☆16Aug 24, 2022Updated 3 years ago
- A Proof of Concept for CVE-2023-50564 vulnerability in Pluck CMS version 4.7.18☆19Feb 9, 2026Updated 3 weeks ago
- ☆15Apr 10, 2025Updated 10 months ago
- Ansible Role for Ludus to provision or remove a device to/from a Tailnet.☆13Dec 5, 2025Updated 3 months ago
- Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables us…☆115Feb 23, 2025Updated last year
- Email Client as MCP Server. Feature: multiple configuration, more than just gmail☆17Apr 22, 2025Updated 10 months ago
- F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LAB☆12May 11, 2023Updated 2 years ago
- ELF Beacon Object File (BOF) Template☆19Nov 18, 2024Updated last year
- An Ubuntu 18.04 box for Mythic C2 framework development☆17Jun 17, 2022Updated 3 years ago
- Python Duo Push API☆42May 31, 2025Updated 9 months ago
- ☆15Apr 29, 2023Updated 2 years ago
- ☆22Jun 17, 2020Updated 5 years ago
- ☆18Oct 8, 2024Updated last year
- Easy shell environment + automated workstation setup☆17Updated this week
- A BOF for lazy people☆22Apr 4, 2024Updated last year
- Serverless Redirector in various cloud vendor for red team☆73Dec 8, 2022Updated 3 years ago
- ☆26Nov 25, 2025Updated 3 months ago
- ☆39Jul 1, 2025Updated 8 months ago
- ☆22Aug 11, 2021Updated 4 years ago
- Do some DLL SideLoading magic☆90Sep 20, 2023Updated 2 years ago
- Finds Documents On Cloud Assets Using grayhatwarfare API for short urls☆23Mar 2, 2022Updated 4 years ago
- Docker container for running CobaltStrike 4.7 and above☆24Mar 20, 2025Updated 11 months ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆46Mar 4, 2024Updated 2 years ago
- Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blocking☆148May 23, 2024Updated last year
- MCP GitHub Mapper is a MCP tool that will map any repository remotely and import the map directly into your code editor.☆24Jul 18, 2025Updated 7 months ago