Back to Home
Amier-ge icon

ConsoleHost_History-Parser-MCP

Verified Safe

by Amier-ge

View Source

Overview

Parses PowerShell ConsoleHost_history.txt files from disk images to extract command history for forensic analysis.

Installation

Run Command
python mcp_server.py

Environment Variables

  • PYTHONPATH

Security Notes

The code uses established forensic libraries (pytsk3, pyewf) for disk image parsing and does not contain obvious security vulnerabilities like 'eval', direct shell execution without sanitization, or hardcoded credentials. It focuses on file system analysis and decoding content, which is generally robust. The main security considerations would be vulnerabilities in the underlying third-party libraries or potential exploits from extremely malformed disk images.

Similar Servers

TriageMCP

73

Enables an LLM to perform static analysis and triage of PE files using local security tools.

Other
3
$Medium

PowerShell.MCP

16

Enables AI assistants to execute arbitrary PowerShell commands and CLI tools for system automation, development tasks, and data analysis in a persistent, shared console environment.

Other
6
$Medium

mcp-insights

5

Automatically collects, analyzes, and reports on the public Model Context Protocol server registry, generating trend data and statistics.

Other
9
$Low

MCPAsPowerShellModule

1

Serves as a Model Context Protocol (MCP) server implemented as a PowerShell module, dynamically exposing C#, PowerShell script, or PowerShell module function tools.

Other
7
$Low

Stats

Interest Score0
Security Score9
Cost ClassHigh
Avg Tokens25000
Stars0
Forks1
Last Update2025-12-13

Tags

PowerShellForensicsDisk ImagingCommand HistoryMCP Server