MCP-Kali-Server-for-SDU
by yuhano
Overview
An API bridge enabling AI clients (MCPs) to execute terminal commands on a Kali Linux server for AI-assisted penetration testing and CTF solving.
Installation
No command providedSecurity Notes
The project's explicit purpose is to allow AI to execute terminal commands, which is an inherently high-risk operation. While the README explicitly warns against unsafe network configurations (e.g., binding to `0.0.0.0` without caution) and encourages SSH tunneling, the capability itself requires extreme trust in the client, careful deployment, and robust security practices to prevent remote code execution vulnerabilities or misuse. No obvious 'eval' or obfuscation is mentioned in the provided text, but the underlying command execution mechanism (likely subprocess calls) is the primary attack surface.
Similar Servers
MCP-Kali-Server
Enabling AI-driven offensive security testing by bridging AI agents to a Kali Linux terminal for command execution.
burp-mcp-agents
Connects Burp Suite MCP Server to AI backends (Codex, Gemini, Ollama, LM Studio) for assisted, non-destructive vulnerability analysis using real Burp traffic.
pentestMCP
This MCP server enables AI agents to perform automated and interactive penetration testing tasks by exposing a suite of security assessment utilities as callable tools.
ctfd-mcp-server
Provides a Model Context Protocol (MCP) server to enable AI tools and automation to interact with the CTFd platform for challenge retrieval and flag submission.