AutoRedTeam Orchestrator

v1.0.0Securitystable

Enterprise AI Red Team Platform | 企业级AI红队平台 | 132 MCP Tools | Pure Python Engines | SDK+CLI+MCP | Auto-Download sqlmap/nuclei/ffuf | Production C2 | LLM Enhanced | Docker Sandbox | SARIF CI/CD | 1980 Tests

active-directoryai-poweredautomationc2cli
Share:
231
Stars
0
Downloads
0
Weekly
0/5

What is AutoRedTeam Orchestrator?

AutoRedTeam Orchestrator is a Model Context Protocol (MCP) server that allows AI assistants like Claude, Cursor, and VS Code to enterprise ai red team platform | 企业级ai红队平台 | 132 mcp tools | pure python engines | sdk+cli+mcp | auto-download sqlmap/nuclei/ffuf | production c2 | llm enhanced | docker sandbox | sarif ci/cd | 1980 ...

Enterprise AI Red Team Platform | 企业级AI红队平台 | 132 MCP Tools | Pure Python Engines | SDK+CLI+MCP | Auto-Download sqlmap/nuclei/ffuf | Production C2 | LLM Enhanced | Docker Sandbox | SARIF CI/CD | 1980 Tests

This server falls under the Security category on MCPgee, the world's largest MCP server directory with 33,000+ servers.

Features

  • Enterprise AI Red Team Platform | 企业级AI红队平台 | 132 MCP Tools

Use Cases

Run AI-powered red team operations
Execute 132 MCP security tools
Perform automated penetration testing
Coff0xc

Maintainer

LicenseNOASSERTION
Languagepython
Versionv1.0.0
UpdatedMay 19, 2026
Statushealthy
Maintenanceactive

Works with

ClaudeOpenAIwindowsmacoslinux

Installation

Manual Installation

npx autoredteam-orchestrator

Configuration

Configuration Details

Config File

claude_desktop_config.json

Performance

Response Metrics

Response Time< 200ms
ThroughputMedium

Resource Usage

Memory UsageLow
CPU UsageLow

How to Set Up and Use AutoRedTeam Orchestrator

AutoRedTeam Orchestrator is an enterprise-grade AI red team platform that exposes 132 MCP tools covering the full penetration testing lifecycle — reconnaissance, vulnerability detection, exploitation, lateral movement, Active Directory attacks, persistence, and post-exploitation — all implemented in pure Python without requiring external tools to be pre-installed (sqlmap, nuclei, and ffuf are auto-downloaded on demand). It can be driven through an MCP-compatible AI editor like Claude Desktop or Claude Code, a Python SDK, or a CLI, and integrates with Docker sandboxes for safe execution and SARIF output for CI/CD pipelines. Security teams conducting authorized red team engagements who want LLM-enhanced decision-making and automated attack orchestration will find this platform most useful.

Prerequisites

  • Python 3.10 or higher
  • Git to clone the repository
  • Docker (optional, for sandbox execution mode)
  • An MCP-compatible client such as Claude Desktop, Cursor, or Claude Code
  • Written authorization to perform security testing on any target systems
1

Clone the repository and install dependencies

Clone the AutoRedTeam Orchestrator repository and install its Python requirements. No external tool installation is needed — sqlmap, nuclei, and ffuf are downloaded automatically on first use.

git clone https://github.com/Coff0xc/AutoRedTeam-Orchestrator.git
cd AutoRedTeam-Orchestrator
pip install -r requirements.txt
2

Verify the installation

Confirm that the core Scanner module imports correctly before configuring the MCP server.

python -c "from autort import Scanner; print('OK')"
3

Start the MCP stdio server

Launch the MCP stdio server, which exposes all 132 tools to any connected MCP client. Keep this process running while using your AI editor.

python mcp_stdio_server.py
4

Configure your MCP client

Add the server to your Claude Desktop or Cursor configuration file. The server is started via the mcp_stdio_server.py script in the cloned directory.

{
  "mcpServers": {
    "autoredteam": {
      "command": "python",
      "args": ["/path/to/AutoRedTeam-Orchestrator/mcp_stdio_server.py"]
    }
  }
}
5

Run a test scan via CLI to confirm end-to-end setup

Use the autort CLI to perform a basic reconnaissance scan on an authorized target. This confirms the engines are working before you rely on the MCP interface.

autort scan http://your-authorized-target.com --full

AutoRedTeam Orchestrator Examples

Client configuration

Claude Desktop configuration to connect to the AutoRedTeam MCP stdio server. Update the path to point to where you cloned the repository.

{
  "mcpServers": {
    "autoredteam": {
      "command": "python",
      "args": ["/path/to/AutoRedTeam-Orchestrator/mcp_stdio_server.py"]
    }
  }
}

Prompts to try

Natural language prompts for use inside an MCP-enabled AI editor once the AutoRedTeam server is connected. Only use against systems you have explicit authorization to test.

- "Scan http://target.example.com for SQL injection vulnerabilities and summarize the findings."
- "Run a full reconnaissance on target.example.com including port scan, subdomain enumeration, and WAF detection."
- "Check http://target.example.com for XSS, SSRF, and CORS misconfigurations."
- "Search the CVE database for recent critical vulnerabilities affecting Apache 2.4.49."
- "Generate a SARIF report from the last scan session for CI/CD integration."

Troubleshooting AutoRedTeam Orchestrator

External tools like nuclei or sqlmap are not found on first use

AutoRedTeam auto-downloads these tools on demand. Ensure the process has write access to the directory where it stores binaries (typically within the project directory). Check for network errors if the download fails and try running with elevated logging: autort detect http://target.com -l debug.

MCP client shows the server as disconnected or tools do not appear

Ensure mcp_stdio_server.py is executable and that the Python path in your config points to the same environment where you ran 'pip install -r requirements.txt'. Use the full absolute path to the Python binary (e.g., /usr/bin/python3) in the config to avoid PATH resolution issues.

Scan results are returning false positives

The platform includes OOB (out-of-band) false positive verification. Enable it in your configuration or use the --verify flag if available. For web application scans, make sure the target is running and accessible — timeouts can cause false positive vulnerability reports.

Frequently Asked Questions about AutoRedTeam Orchestrator

What is AutoRedTeam Orchestrator?

AutoRedTeam Orchestrator is a Model Context Protocol (MCP) server that enterprise ai red team platform | 企业级ai红队平台 | 132 mcp tools | pure python engines | sdk+cli+mcp | auto-download sqlmap/nuclei/ffuf | production c2 | llm enhanced | docker sandbox | sarif ci/cd | 1980 tests It connects AI assistants to external tools and data sources through a standardized interface.

How do I install AutoRedTeam Orchestrator?

Follow the installation instructions on the AutoRedTeam Orchestrator GitHub repository. Clone the repo, install dependencies, and add the server config to your AI client.

Which AI clients work with AutoRedTeam Orchestrator?

AutoRedTeam Orchestrator works with all major MCP-compatible AI clients including Claude Desktop, Claude Code, Cursor, VS Code (GitHub Copilot), Windsurf, and Cline.

Is AutoRedTeam Orchestrator free to use?

Yes, AutoRedTeam Orchestrator is open source and available under the NOASSERTION license. You can use it freely in both personal and commercial projects.

AutoRedTeam Orchestrator Alternatives — Similar Security Servers

Looking for alternatives to AutoRedTeam Orchestrator? Here are other popular security servers you can use with Claude, Cursor, and VS Code.

Casdoor

13.6k

An open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI supporting OpenClaw, MCP, OAuth, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD

ghidraMCP

9.0k

An Model Context Protocol server that enables LLMs to autonomously reverse engineer applications by exposing Ghidra's decompilation and analysis tools. It allows AI agents to list code structures, rename methods, and analyze binaries directly through

HexStrike AI

8.9k

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug bounty automation, and security research. Seamlessly b

IDA Pro MCP

8.7k

Enables AI-assisted reverse engineering in IDA Pro by providing tools to analyze binaries, decompile functions, manage comments, search patterns, and interact with the IDA database through natural language.

Anthropic Cybersecurity Skills

6.6k

754 structured cybersecurity skills for AI agents · Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platform

Hooker

5.1k

🔥🔥 hooker is a Frida-based reverse engineering toolkit for Android. It offers a user-friendly CLI, universal scripts, auto hook generation, memory roaming to detect activities/services, one-click SOCKS5 proxy setup, Frida JustTrustMe, and BoringSSL u

Browse More Security MCP Servers

Explore all security servers available in the MCPgee directory. Each server includes setup guides for Claude, Cursor, and VS Code.

Quick Config Preview

{ "mcpServers": { "autoredteam-orchestrator": { "command": "npx", "args": ["-y", "autoredteam-orchestrator"] } } }

Add this to your claude_desktop_config.json or .cursor/mcp.json

Read the full setup guide →

Ready to use AutoRedTeam Orchestrator?

Browse our complete directory of 33,000+ MCP servers, read setup guides for your editor, and start building with the Model Context Protocol.

33,000+ ServersFree & Open SourceStep-by-Step Guides