Kali Tools
БесплатноНе проверенExposes a hardened Docker container with Kali Linux security tools (nmap, sqlmap, dig, whois, etc.) as MCP tools, enabling network reconnaissance, web analysis,
Описание
Exposes a hardened Docker container with Kali Linux security tools (nmap, sqlmap, dig, whois, etc.) as MCP tools, enabling network reconnaissance, web analysis, and vulnerability scanning through natural language commands.
README
This project builds a hardened Docker image containing:
- A Node.js MCP server (Streamable HTTP transport)
- A selected security toolset (
nmap,sqlmap,dig,whois,openssl,curl,netcat,dnsutils, plus Chromium for browser exploration)
Installation & Setup
Prerequisites
- Docker (for containerized deployment)
- Node.js 18+ (for local development)
- npm
Install dependencies
npm install
Build the Docker image
docker build -t kali-tools-mcp:latest .
Run the server
Option 1: Local development
npm start
By default, the server listens on http://0.0.0.0:3000. Override with environment variables:
HOST=127.0.0.1 PORT=8080 npm start
Option 2: Docker (detached)
docker run -d --name kali-tools-mcp --rm -p 3000:3000 kali-tools-mcp:latest
Option 3: Docker (hardened runtime)
docker run -d --name kali-tools-mcp --rm \
-p 3000:3000 \
--read-only \
--tmpfs /tmp:rw,noexec,nosuid,size=64m \
--cap-drop ALL \
--security-opt no-new-privileges:true \
--pids-limit 256 \
--memory 512m \
--cpus 1.0 \
kali-tools-mcp:latest
Health check
curl http://localhost:3000/health
Stop the container
docker stop kali-tools-mcp
MCP Configuration
Endpoint
http://localhost:3000/mcp
Example MCP client config
Use this in an MCP-compatible client that supports Streamable HTTP servers:
{
"mcpServers": {
"kali-tools": {
"type": "streamable-http",
"url": "http://localhost:3000/mcp"
}
}
}
Exposed Tools
Reconnaissance & Discovery
nmap_scan: Runnmapwith a controlled set of options (-sV,-sT,-Pn,-A,-F)dig_lookup: Resolve DNS records viadig(A, AAAA, CNAME, MX, TXT, NS)whois_lookup: Fetch WHOIS information for a domain
Web & TLS Analysis
http_headers_check: Fetch HTTP response headers from a URL (supports redirect following and insecure TLS)website_explore: Open a website in Playwright and return a structured summary of the pagewebsite_interact_form: Fill form fields in Playwright and optionally submit the formplaywright_cli: Run bounded Playwright CLI commands (--version,install,screenshot,pdf,show-trace)tls_certificate_check: Inspect TLS certificate and handshake details for a hostnmap_ssl_cipher_scan: Enumerate supported TLS ciphers on a target
Vulnerability Scanning
sqlmap_url_scan: Run a boundedsqlmapcheck against a URLnmap_vuln_scan: Runnmapvulnerability NSE scripts against a host
Configuration & Limits
- Tool timeout: 60 seconds (120 seconds for vulnerability scans)
- Max output: 12,000 characters (truncated if exceeded)
- Max buffer: 10 MB per execution
- Options constraints: Commands enforce strict argument whitelisting to prevent abuse
Security & Authorization
⚠️ Important: Run scans only on systems you own or have explicit written permission to test.
- The image uses a slim base and runs as a non-root user.
- The server limits command arguments and output size to reduce abuse and accidental overload.
- All tool executions are bounded by timeouts and resource constraints.
- Environment variables default to listening on all interfaces (
0.0.0.0); restrict to127.0.0.1for local-only access.
Development
Project structure
.
├── Dockerfile # Container definition
├── package.json # Node.js dependencies & metadata
├── README.md # This file
└── src/
└── server.js # MCP server implementation
License & Disclaimer
Use responsibly. The authors are not responsible for misuse of this software. Ensure all scans are authorized.
Установка Kali Tools
У этого сервера нет опубликованного пакета — он собирается из исходников. Открой репозиторий и следуй инструкции в README.
▸ github.com/M-Samuel/kali-local-agentFAQ
Kali Tools MCP бесплатный?
Да, Kali Tools MCP бесплатный — установка в пару кликов через Unyly без оплаты.
Нужен ли API-ключ для Kali Tools?
Нет, Kali Tools работает без API-ключей и переменных окружения.
Kali Tools — hosted или self-hosted?
Доступен hosted-вариант: Unyly запускает сервер в облаке, локальная установка не обязательна.
Как установить Kali Tools в Claude Desktop, Claude Code или Cursor?
Открой Kali Tools на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.
Похожие MCP
GitHub
PRs, issues, code search, CI status
автор: GitHubFilesystem
Secure file operations with configurable access controls.
Memory
Knowledge graph-based persistent memory system.
Template MCP Server
A CLI tool to create a new Model Context Protocol server project with TypeScript support, dual transport options, and an extensible structure
автор: mcpdotdirectCompare Kali Tools with
Не уверен что выбрать?
Найди свой стек за 60 секунд
Автор?
Embed-бейдж для README
Похожее
Все в категории development
