umjiniti-probe
by BCL-FOSS
Overview
Turns a Large Language Model (LLM) into a network administrator by providing network utility tools and a persistent connection to a cloud platform.
Installation
sudo ./init.shEnvironment Variables
- PROBE_DB
- PROBE_DB_PORT
Security Notes
The application relies heavily on executing shell commands (`nmap`, `iperf3`, `traceroute`, `tcpdump`, `dnstraceroute`) via `asyncio.create_subprocess_shell` and `sshpass` with user-provided string inputs (`options`, `host`, `target`, `scripts`, `packetlength`, `server`, `interface`, `cap_count`, `duration`). There is no visible input sanitization or escaping of these parameters before they are interpolated into shell commands. This creates critical command injection vulnerabilities, allowing an attacker (or a compromised LLM) to execute arbitrary commands on the host system (due to `network_mode: "host"` and `cap_add: NET_ADMIN` in Docker) or remote SSH targets. The use of `sshpass` directly with passwords in `run_ssh_cmd` is also a security concern for credential handling. The `init.sh` script modifies host firewall rules, disabling UFW and opening several ports, which alters the host's security posture. A hardcoded `SNMP_COMMUNITY='public'` is present.
Similar Servers
fastapi_mcp
Automatically converts FastAPI endpoints into Model Context Protocol (MCP) tools for seamless integration with LLM agents.
globalping-mcp-server
Enables AI models to interact with a global network measurement platform through natural language, allowing LLMs to run various network tests and access data from thousands of probes worldwide.
radkit-mcp-server-community
Enables AI models to interact with Cisco RADKit-managed network devices via MCP tools for inventory, command execution, and SNMP operations.
Instability
An AI-powered local chatbot for network diagnostics and pentesting, leveraging Ollama to keep all analysis private and on-premise.