advanced-powershell-mcp
by RandyNorthrup
Overview
Provides comprehensive Windows system management capabilities through PowerShell, including network configuration, security management, registry operations, event log analysis, disk management, Windows Defender antivirus, CIS Benchmark security hardening, performance monitoring, database operations, and complete system administration.
Installation
npm startEnvironment Variables
- USERNAME
- COMPUTERNAME
Security Notes
The server executes PowerShell commands constructed using direct string interpolation of user-controlled parameters (e.g., log names, paths, search terms, user/group names, SQL queries, backup paths). This creates a significant risk of PowerShell command injection if an attacker can control or manipulate these inputs. While Zod validates input types, it does not sanitize against PowerShell-specific injection vectors. Many operations require administrator privileges and can perform destructive actions (e.g., formatting disks, deleting registry keys, clearing event logs). The CIS Benchmark tools, for example, build .inf files with interpolated user strings for `secedit` execution, which is a critical injection risk.
Similar Servers
Windows-MCP
This MCP server enables AI agents to directly interact with the Windows operating system, performing tasks such as file navigation, application control, UI interaction, and QA testing.
MCPControl
A Windows control server for the Model Context Protocol, enabling AI models to programmatically control system operations such as mouse, keyboard, window management, and screen capture.
Windows-MCP.Net
Enabling AI assistants to automate tasks and interact with the Windows desktop environment.
PowerShell.MCP
Enables AI assistants to execute arbitrary PowerShell commands and CLI tools for system automation, development tasks, and data analysis in a persistent, shared console environment.