Hunter
БесплатноНе проверенAI-driven penetration testing MCP server that equips Claude with 13 tools for automated reconnaissance, analysis, vulnerability validation, and exploitation.
Описание
AI-driven penetration testing MCP server that equips Claude with 13 tools for automated reconnaissance, analysis, vulnerability validation, and exploitation.
README
Overview
Hunter is an AI-driven penetration testing framework that combines automated tools with intelligent analysis. Claude is the brain, and the tools are the hands.
Adaptive HTTP Infrastructure
The hunter_tools server includes stateful browser fingerprints, WAF/rate-limit/captcha detection, classified proxy pools, persistent cookies/CSRF, bounded retries and complete request audit timelines. See docs/adaptive-http.md.
Persistent Attack Sessions
Hunter now adds persistent AttackSession state, YAML/JSON attack-chain
orchestration, full-state checkpoints, automatic Cookie/CSRF/auth/form
extraction, and evidence-gated post-exploitation planning. The six preset
templates live under chains/; see docs/attack-session.md.
Browser MCP Bridge
The browser bridge adds six tools for real-browser workflows while keeping the Hunter process side-effect free:
hunter_browser_navigatehunter_browser_interacthunter_browser_capture_networkhunter_browser_inject_hookshunter_browser_get_hook_resultshunter_browser_snapshot
These tools emit Playwright MCP call descriptors in
mode: "external-mcp-handoff" with execution: "deferred". They do not
start Playwright, execute page JavaScript, send network traffic, or replay
WebSocket frames directly. Hook observations are bounded, redacted, and
encrypted in the browser session store. Browser-discovered Hunter actions are
confirmation-gated descriptors rather than automatic scanner invocations.
Reverse Analysis Pipeline
The reverse-analysis layer adds five persistent orchestration tools:
hunter_reverse_binaryhunter_reverse_stephunter_reverse_extract_iocshunter_reverse_generate_ruleshunter_reverse_decrypt_plan
Hunter performs safe local triage, state persistence, function correlation, planning, and report generation. Ghidra, ReverseLabTools, Frida, apktool, and jadx remain external analysis backends. Missing backends produce explicit handoffs instead of fabricated capture results.
Unified CTF Workflow Kernel
Hunter now provides event-sourced workflow state, 14 target/artifact lanes, capability-based handoffs to reverse backends, guided/autopilot policies, evidence-backed proof conditions, hash-chained events, revision checks, checkpoint tail replay, and proof-aware early stop.
Local Memory System
Hunter stores reusable assessment knowledge in
D:\Open-tgtylab\data\targets.db. The memory layer records target history,
fingerprints, endpoints, vulnerabilities, attack outcomes, and technique
success rates. It also provides deterministic parameter/response patterns and
passive WAF, CMS, framework, and API fingerprint matching.
The five memory tools are hunter_memory_query,
hunter_memory_record, hunter_memory_recommend,
hunter_fingerprint_detect, and hunter_memory_stats. Recommendations are
explainable data only: they do not launch scanners or execute payloads.
hunter_auto_pentest runs the seven-stage unified orchestrator with
fast/standard/deep profiles and all/web/api/js/reverse module
selection. It persists stage checkpoints and pauses for interactive approval
before high-impact actions.
MCP v8 Hardening
Hunter Tools exposes 111 MCP tools with stable JSON output, local capability introspection, and evidence-driven routing.
Local-first meta tools
# Check runtime health without touching targets
await hunter_healthcheck()
# Get actual tool matrix for agent routing
await hunter_capabilities()
# Recommend next proof step from observed signals
await hunter_recommend_next(
target="https://example.com",
signals=["idor", "jwt", "cors"],
finding="API uses userId and X-Id-Token"
)
v8 auto tools
hunter_auto_sqli, hunter_auto_xss, hunter_auto_ssrf, hunter_auto_ssti, hunter_auto_cmd, hunter_auto_xxe, hunter_auto_idor, hunter_auto_csrf, hunter_auto_cors, hunter_auto_jwt, hunter_auto_graphql, hunter_auto_websocket, hunter_auto_race, hunter_auto_access_control, and hunter_unified_scan are registered through the root MCP server.
All v8 wrappers return bounded JSON with status, tool, elapsed_seconds, and either scanner results or structured error/timeout details.
MCP v8.1 hunter_tools Facade
Hunter v8.2 consolidates every Hunter capability into one complete hunter_tools MCP server, including scanners, orchestration, sessions, reports, KB and Burp bridge.
- Single complete server:
mcp_server.py/ server namehunter_tools, exposing 111 MCP tools. hunter_tools_mcp.pyis only a compatibility launcher that delegates to the complete server; it does not create a second MCP registry.- Core KB/Burp implementation:
core/hunter_tools_facade.py. - Design/plan:
docs/hunter-tools-v81-design.mdanddocs/hunter-tools-v81-plan.md.
New KB tools
await hunter_kb_list()
await hunter_kb_search("jwt alg none weak signing key", limit=5)
await hunter_kb_read("jwt/jwt-attack-techniques.md")
await hunter_kb_recommend(
signals=["jwt", "idor", "cors"],
finding="API exposes userId and Authorization bearer token",
target="https://example.test/api/user/1"
)
These tools index both:
payloads/**/*.mdtechnique notes.payloads/*/payloads.yamlpayload inventories.
New Burp bridge plan tools
await hunter_burp_repeater("https://example.test/api/user/1")
await hunter_burp_proxy_search("Authorization|/api/")
await hunter_burp_scanner_issues(severity_filter="high,medium")
await hunter_burp_collaborator_workflow("blind_ssrf", "https://example.test/fetch?url=x", param="url")
await hunter_burp_bridge("repeater", url="https://example.test/", method="GET")
These return explicit Burp MCP action descriptors. Execute the returned action with the matching Burp tool, then import proof artifacts with hunter_burp_import.
Compatibility rule
HTTP execution still follows the project protocol:
Burp send_http2_request > http_probe > curl/wget
Hunter's Burp bridge builds action plans and evidence packaging; it does not bypass Burp/http_probe priority.
Tool Inventory
Go-based Tools (28 tools)
| Tool | Purpose | Version |
|---|---|---|
| nuclei | Vulnerability scanner | v3.8.0 |
| subfinder | Subdomain discovery | Latest |
| naabu | Port scanner | Latest |
| httpx | HTTP toolkit | Latest |
| katana | Web crawler | Latest |
| gau | URL fetcher | Latest |
| uncover | Host discovery | Latest |
| tlsx | TLS toolkit | Latest |
| cdncheck | CDN detection | Latest |
| mapcidr | CIDR toolkit | Latest |
| ffuf | Web fuzzer | v2.1.0 |
| gobuster | Directory brute-forcer | Latest |
| dnsx | DNS toolkit | Latest |
| dalfox | XSS scanner | Latest |
| notify | Notification tool | Latest |
| amass | Attack surface mapping | Latest |
| waybackurls | Wayback URL fetcher | Latest |
| assetfinder | Asset discovery | Latest |
| httprobe | HTTP prober | Latest |
| unfurl | URL parser | Latest |
| meg | Request sender | Latest |
| anew | Line appender | Latest |
| qsreplace | Query string replacer | Latest |
| subjack | Subdomain takeover | Latest |
| hakrevdns | Reverse DNS | Latest |
| hakrawler | Web crawler | Latest |
| getjs | JS file discovery | Latest |
| subjs | JS file discovery | Latest |
Python Tools (8 tools)
| Tool | Purpose |
|---|---|
| sqlmap | SQL injection |
| wafw00f | WAF detection |
| dirsearch | Directory scanner |
| whatweb | Web technology identifier |
| wpscan | WordPress scanner |
| droopescan | CMS scanner |
| hashid | Hash identifier |
| arjun | Hidden parameter discovery |
System Tools (3 tools)
| Tool | Purpose | Version |
|---|---|---|
| nmap | Network scanner | 7.80 |
| nikto | Web server scanner | Latest |
| curl | HTTP client | Latest |
Special Tools (4 tools)
| Tool | Purpose |
|---|---|
| impacket | Network protocols library |
| jwt_tool | JWT testing |
| perl | Scripting runtime |
| Python 3.14 | Scripting runtime |
Wordlists
Location: C:\Tools\wordlists\
| File | Size | Description |
|---|---|---|
| common.txt | 367 B | Common web paths |
| big.txt | 162.5 KB | Large web paths |
| raft-small-directories.txt | 159.4 KB | Small directory list |
| raft-small-files.txt | 144.9 KB | Small file list |
| raft-medium-directories.txt | 244.6 KB | Medium directory list |
| raft-medium-files.txt | 219.1 KB | Medium file list |
| raft-large-directories.txt | 529.3 KB | Large directory list |
| raft-large-files.txt | 482 KB | Large file list |
| quickhits.txt | 39.2 KB | Quick hits |
| logins.txt | 1.1 KB | Login paths |
| wordpress.txt | 57.6 KB | WordPress paths |
| api-endpoints.txt | 4.3 KB | API endpoints |
| subdomains-top1million-5000.txt | 29.4 KB | Top 5K subdomains |
| subdomains-top1million-110000.txt | 1.3 MB | Top 110K subdomains |
| dns-Jhaddix.txt | 25.3 MB | DNS wordlist |
| usernames.txt | 112 B | Common usernames |
Quick Scan Scripts
Reconnaissance
.\quick_recon.ps1 -Target example.com
Vulnerability Scanning
.\quick_vuln.ps1 -Target https://example.com
Web Application Testing
.\quick_web.ps1 -Target https://example.com
Core Scanner
python hunter_core.py recon example.com
python hunter_core.py vuln https://example.com
python hunter_core.py web https://example.com
MCP Server
from mcp_server import get_hunter
hunter = get_hunter()
# Subdomain enumeration
result = hunter.subfinder_enum("example.com")
# Vulnerability scanning
result = hunter.nuclei_scan("https://example.com", severity="critical,high")
# Port scanning
result = hunter.naabu_scan("example.com", "top-1000")
# XSS testing
result = hunter.dalfox_xss("https://example.com/?id=1")
# SQL injection
result = hunter.sqlmap_test("https://example.com/?id=1", level=3, risk=2)
Environment Variables
$env:GOPROXY = "https://goproxy.cn,direct"
$env:all_proxy = "http://127.0.0.1:7890"
Directory Structure
hunter/
├── SKILL.md # Skill definition
├── TOOLS.md # Tools inventory
├── README.md # This file
└── core/
├── hunter_core.py # Core scanner
├── mcp_server.py # MCP integration
├── tools_config.ps1 # Tools configuration
└── scripts/
├── quick_recon.ps1 # Quick reconnaissance
├── quick_vuln.ps1 # Quick vulnerability scan
└── quick_web.ps1 # Quick web scan
Usage Examples
Full Reconnaissance
# 1. Subdomain enumeration
subfinder -d example.com -o subdomains.txt
# 2. DNS resolution
cat subdomains.txt | dnsx -o resolved.txt
# 3. HTTP probing
cat resolved.txt | httpx -o live.txt
# 4. Port scanning
cat live.txt | naabu -top-ports 1000 -o ports.txt
# 5. URL discovery
gau example.com > urls.txt
katana -u https://example.com -d 3 -jc >> urls.txt
# 6. Vulnerability scanning
nuclei -l live.txt -severity critical,high,medium
Web Application Testing
# 1. Technology detection
httpx -u https://example.com -tech-detect
# 2. Directory enumeration
gobuster dir -u https://example.com -w C:\Tools\wordlists\common.txt
# 3. XSS testing
dalfox url "https://example.com/?id=1"
# 4. SQL injection
sqlmap -u "https://example.com/?id=1" --batch --level=3
# 5. Parameter discovery
arjun -u https://example.com
Network Scanning
# 1. Port scanning
nmap -sV -sC -oA scan example.com
# 2. Service enumeration
nmap -sV -p 80,443,8080 example.com
# 3. Vulnerability scanning
nmap --script vuln example.com
Tool Installation
Go Tools
$env:GOPROXY = "https://goproxy.cn,direct"
go install github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest
go install github.com/projectdiscovery/subfinder/v2/cmd/subfinder@latest
# ... etc
Python Tools
pip install sqlmap wafw00f dirsearch whatweb wpscan droopescan hashid arjun
System Tools
winget install Nmap.Nmap
# nikto - git clone https://github.com/sullo/nikto.git
Contributing
- Add new tools to the inventory
- Update TOOLS.md
- Create wrapper scripts in core/scripts/
- Update MCP server integration
License
For authorized penetration testing only. Always obtain proper authorization before testing.
Disclaimer
本项目仅用于教育和授权安全研究目的。用户必须确保在合法授权范围内操作。使用本项目产生的任何后果由用户自行承担。
See DISCLAIMER.md for the full disclaimer.
Burp Evidence Workflow
- Export your request, response, screenshots, and any JSON notes from Burp into one folder.
- Use
core.burp_adapter.suggest_hunter_prefix(target, vuln_slug)to get a Hunter-friendly prefix. - Use
core.burp_import.import_burp_evidence(source_dir, target, vuln_slug, destination_dir)to copy and rename the files into Hunter's evidence directory. - Let Hunter pick them up automatically in the final report appendix.
One-click Burp import
.\core\scripts\quick_burp_import.ps1 -SourceDir "C:\BurpExports\gnnu" -Target "https://jwgl.gnnu.edu.cn" -VulnSlug "idor"
This copies Burp-exported request/response/screenshots/evidence files into Hunter's evidence directory using Hunter-friendly naming.
Related Projects
- Open-tgtylab — 安全研究工作台,集成逆向工程、CTF、移动安全、Web安全于一体
Integration v2 diagnostics
Hunter publishes integration-contract.json as the machine-readable compatibility contract. The complete MCP provides:
hunter_contract_checkhunter_config_audithunter_runtime_statushunter_doctor
Run hunter_doctor after install/update or when the MCP registry changes. CI tests the contract and complete pytest suite on Windows and Linux.
Adaptive Engine v1
Use hunter_fast_scan for the first pass. It executes a bounded DAG, runs independent agents concurrently, reuses target/profile cache, persists raw results, and returns a compact evidence envelope. Preview work with hunter_scan_plan; measure local scheduling/cache/compaction with hunter_scan_benchmark; inspect or clear cache with hunter_cache_status and hunter_cache_clear.
Profiles:
fast: 180s, 10 tools, concurrency 4, compact 16KB response.standard: 1200s, 24 tools, concurrency 6, compact 32KB response.deep: 3600s, 50 tools, concurrency 8, compact 64KB response.
Raw scanner output is written under evidence/adaptive_raw; MCP responses contain top findings, signals, agent summaries, metrics, artifact path and SHA-256 instead of unbounded stdout.
Установка Hunter
У этого сервера нет опубликованного пакета — он собирается из исходников. Открой репозиторий и следуй инструкции в README.
▸ github.com/GeniusHu-tgty/HunterFAQ
Hunter MCP бесплатный?
Да, Hunter MCP бесплатный — установка в пару кликов через Unyly без оплаты.
Нужен ли API-ключ для Hunter?
Нет, Hunter работает без API-ключей и переменных окружения.
Hunter — hosted или self-hosted?
Доступен hosted-вариант: Unyly запускает сервер в облаке, локальная установка не обязательна.
Как установить Hunter в Claude Desktop, Claude Code или Cursor?
Открой Hunter на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.
Похожие MCP
Fetch
Web content fetching and conversion for efficient LLM usage.
AWS KB Retrieval
Retrieval from AWS Knowledge Base using Bedrock Agent Runtime.
автор: modelcontextprotocolSpring AI MCP Server
Provides auto-configuration for setting up an MCP server in Spring Boot applications.
llm-analysis-assistant
A very streamlined mcp client that supports calling and monitoring stdio/sse/streamableHttp, and can also view request responses through the /logs page. It also
автор: xuzexin-hzCompare Hunter with
Не уверен что выбрать?
Найди свой стек за 60 секунд
Автор?
Embed-бейдж для README
Похожее
Все в категории ai
