MCP Kali Server

v1.0.0Securitystable

Connects AI assistants to 55+ Kali Linux security tools for automated CTF solving, penetration testing, and security analysis across 7 categories including cryptography, forensics, web security, and binary exploitation.

kali-toolsmcpmcp-serverpenetration-testingpentesting
Share:
699
Stars
0
Downloads
0
Weekly
0/5

What is MCP Kali Server?

MCP Kali Server is a Model Context Protocol (MCP) server that allows AI assistants like Claude, Cursor, and VS Code to connects ai assistants to 55+ kali linux security tools for automated ctf solving, penetration testing, and security analysis across 7 categories including cryptography, forensics, web security, and b...

Connects AI assistants to 55+ Kali Linux security tools for automated CTF solving, penetration testing, and security analysis across 7 categories including cryptography, forensics, web security, and binary exploitation.

This server falls under the Security category on MCPgee, the world's largest MCP server directory with 33,000+ servers.

Features

  • Connects AI assistants to 55+ Kali Linux security tools for

Use Cases

55+ Kali Linux security tools
CTF and penetration testing automation
Cryptography and forensics analysis
foxibu

Maintainer

LicenseMIT
Languagepython
Versionv1.0.0
UpdatedMay 22, 2026
Statushealthy
Maintenanceactive

Works with

ClaudeOpenAIwindowsmacoslinux

Installation

Manual Installation

npx mcp-kali-server

Configuration

Configuration Details

Config File

claude_desktop_config.json

Performance

Response Metrics

Response Time< 200ms
ThroughputMedium

Resource Usage

Memory UsageLow
CPU UsageLow

How to Set Up and Use MCP Kali Server

MCP Kali Server bridges AI assistants like Claude to a running Kali Linux environment, exposing 55+ specialized security tools across seven CTF categories: Pwnable, Cryptography, Forensics, Web Security, Cloud, Web3, and Reversing. It runs as a Python Flask server with 73+ API endpoints, enabling Claude to orchestrate complex multi-step attack chains — from RSA decryption and memory forensics to web vulnerability scanning and binary exploitation — without the user manually copying tool outputs between steps. It is designed for CTF competitors, penetration testers, and security researchers who want AI-assisted automation of their Kali toolchain.

Prerequisites

  • A Kali Linux environment (native, WSL2, or VM) with the target tools installed (nmap, sqlmap, pwntools, Volatility3, etc.)
  • Python 3.9 or later with pip or uv
  • Docker and Docker Compose v2.26+ (recommended for containerised setup)
  • An MCP-compatible client such as Claude Desktop
  • Git to clone the repository
1

Clone the repository

Clone the CTF-Solver repository from GitHub to your Kali Linux machine.

git clone https://github.com/foxibu/CTF-Solver.git
cd CTF-Solver
2

Install Python dependencies

Install the project dependencies using pip (or uv for faster installs). This installs the Flask server and all Python bindings for the supported tools.

pip install -e .
# OR with uv:
uv pip install -e .
3

Start the Kali server

Launch the Kali server process. By default it listens on port 5000. Use --port to change the port if needed.

python3 kali_server.py
# Custom port:
python3 kali_server.py --port 8080
4

Configure environment variables

Set the server connection variables so the MCP client can reach the Kali server. KALI_SERVER_URL should point to the machine running kali_server.py.

export KALI_SERVER_URL="http://localhost:5000"
export KALI_REQUEST_TIMEOUT="300"
export DEBUG_MODE="false"
5

Add the MCP server to your client config

Register the MCP Kali Server in your claude_desktop_config.json so Claude can reach the Kali toolchain.

{
  "mcpServers": {
    "mcp-kali-server": {
      "command": "npx",
      "args": ["mcp-kali-server"],
      "env": {
        "KALI_SERVER_URL": "http://localhost:5000",
        "KALI_REQUEST_TIMEOUT": "300"
      }
    }
  }
}
6

Verify the connection

Ask Claude to list available tools or run a simple nmap scan to confirm the Kali server is reachable and the MCP integration is working.

MCP Kali Server Examples

Client configuration

claude_desktop_config.json entry for MCP Kali Server pointing to a locally running kali_server.py instance.

{
  "mcpServers": {
    "mcp-kali-server": {
      "command": "npx",
      "args": ["mcp-kali-server"],
      "env": {
        "KALI_SERVER_URL": "http://localhost:5000",
        "KALI_REQUEST_TIMEOUT": "300",
        "DEBUG_MODE": "false"
      }
    }
  }
}

Prompts to try

Example prompts that leverage the 55+ Kali tools exposed via this MCP server.

- "Run an nmap scan on 192.168.1.0/24 and identify open HTTP ports."
- "I have an RSA CTF challenge with n and e. Use RsaCtfTool to attempt to factor n and recover the plaintext."
- "Run gobuster and nikto against http://target.ctf and summarise the findings."
- "Analyze this memory dump with Volatility3 and list running processes and network connections."
- "Use checksec on this binary, then generate a ROP chain with ROPgadget to exploit the buffer overflow."

Troubleshooting MCP Kali Server

Connection refused to KALI_SERVER_URL

Make sure kali_server.py is running and listening on the expected port. If running in Docker, verify the port mapping and that the container is healthy with 'docker-compose ps'.

A tool returns 'command not found' errors

The specific Kali tool (e.g. sqlmap, Ghidra) must be installed in the Kali environment. Install missing tools with 'sudo apt install <toolname>' or follow the tool's individual install guide.

Request timeout on long-running scans

Increase KALI_REQUEST_TIMEOUT (default 300 seconds). For tools like hashcat or metasploit that may run for minutes, set it to 600 or higher.

Frequently Asked Questions about MCP Kali Server

What is MCP Kali Server?

MCP Kali Server is a Model Context Protocol (MCP) server that connects ai assistants to 55+ kali linux security tools for automated ctf solving, penetration testing, and security analysis across 7 categories including cryptography, forensics, web security, and binary exploitation. It connects AI assistants to external tools and data sources through a standardized interface.

How do I install MCP Kali Server?

Follow the installation instructions on the MCP Kali Server GitHub repository. Clone the repo, install dependencies, and add the server config to your AI client.

Which AI clients work with MCP Kali Server?

MCP Kali Server works with all major MCP-compatible AI clients including Claude Desktop, Claude Code, Cursor, VS Code (GitHub Copilot), Windsurf, and Cline.

Is MCP Kali Server free to use?

Yes, MCP Kali Server is open source and available under the MIT license. You can use it freely in both personal and commercial projects.

MCP Kali Server Alternatives — Similar Security Servers

Looking for alternatives to MCP Kali Server? Here are other popular security servers you can use with Claude, Cursor, and VS Code.

Casdoor

13.6k

An open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI supporting OpenClaw, MCP, OAuth, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD

ghidraMCP

9.0k

An Model Context Protocol server that enables LLMs to autonomously reverse engineer applications by exposing Ghidra's decompilation and analysis tools. It allows AI agents to list code structures, rename methods, and analyze binaries directly through

HexStrike AI

8.9k

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug bounty automation, and security research. Seamlessly b

IDA Pro MCP

8.7k

Enables AI-assisted reverse engineering in IDA Pro by providing tools to analyze binaries, decompile functions, manage comments, search patterns, and interact with the IDA database through natural language.

Anthropic Cybersecurity Skills

6.6k

754 structured cybersecurity skills for AI agents · Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platform

Hooker

5.1k

🔥🔥 hooker is a Frida-based reverse engineering toolkit for Android. It offers a user-friendly CLI, universal scripts, auto hook generation, memory roaming to detect activities/services, one-click SOCKS5 proxy setup, Frida JustTrustMe, and BoringSSL u

Browse More Security MCP Servers

Explore all security servers available in the MCPgee directory. Each server includes setup guides for Claude, Cursor, and VS Code.

Quick Config Preview

{ "mcpServers": { "mcp-kali-server": { "command": "npx", "args": ["-y", "mcp-kali-server"] } } }

Add this to your claude_desktop_config.json or .cursor/mcp.json

Read the full setup guide →

Ready to use MCP Kali Server?

Browse our complete directory of 33,000+ MCP servers, read setup guides for your editor, and start building with the Model Context Protocol.

33,000+ ServersFree & Open SourceStep-by-Step Guides