kali-mcp-server

The server implements robust security controls for its intended purpose: exposing offensive security tools. Key protections include a strict command allowlist (preventing arbitrary command execution), extensive input validation (preventing shell injection and path traversal), output sanitization (redacting sensitive data like passwords/API keys), execution timeouts, and output size limits. All commands run in isolated child processes. The inherent nature of the tools it wraps (e.g., Nmap, SQLMap, Hydra) means they are capable of destructive actions, hence the critical legal disclaimers. The server's own code does not contain 'eval', obfuscation, or hardcoded sensitive secrets that would directly compromise it, but misuse of the powerful underlying tools could lead to significant security incidents if authorization is not properly obtained. The server uses StdioServerTransport, reducing its direct network attack surface for the MCP protocol itself.