Pentest

Orchestrates penetration testing workflows through Nmap, Nuclei, Nikto, SQLMap, and Metasploit integration with automated reconnaissance, vulnerability scanning, and exploitation sequencing for security assessments and red team exercises.

This MCP server provides automated penetration testing capabilities through a comprehensive suite of security tools including Nmap, Nuclei, Nikto, SQLMap, and Metasploit integration. Built by adriyansyah-mf using TypeScript, it orchestrates reconnaissance, vulnerability scanning, and controlled exploitation attempts through an adaptive workflow engine that intelligently sequences testing phases based on discovered services and technologies. The implementation includes advanced features like parameter extraction with Katana, fuzzing with ffuf/wfuzz, service-specific testing for Active Directory and SMB, and automated report generation in multiple formats, making it valuable for security professionals conducting authorized penetration tests, red team exercises, and security assessments where manual tool coordination would be time-intensive.