MCP Observatory
github analyzed a30242d

wallieinformal201/pentest-mcp-server

github

Integrate penetration testing tools and payloads into your workflow through the Model Context Protocol using STDIO or HTTP.

maintainer
wallieinformal201
license
Apache-2.0
first seen
2026-06-04
last seen
2026-06-16
releases · 30d
0
short id

Drift inferred · capture-to-capture

  1. HIGH code analysis flagged dynamic code execution in wallieinformal201/pentest-mcp-server
  2. HIGH code analysis flagged dynamic code execution in wallieinformal201/pentest-mcp-server
capabilities 9 tools
transport stdio · streamable-http · http counts 9 tools · 0 res · 0 prompts permission surface via code analysis

tools

  • authorized_use_reminder

    field rendered as the first line of every response so the framing reaches all clients

  • detection_note

    included in every response — how defenders detect encoded payload variants — preserving the dual-audience framing

  • nextToolSuggestions

    pre-filled with payload generator and ATT&CK lookup calls from the methodology context

  • pentest_analyze_response

    Analyzes a raw server response (headers + body) from authorized probing for information leakage, fingerprinting signals, and exploitation opportunities — each finding paired with remediation.

  • pentest_encode

    Applies an encoding chain to a payload string (URL, double-URL, HTML entity, Unicode, hex, Base64, and more). Returns step-by-step decode explanation and bypass rationale.

  • pentest_generate_payloads

    Generates annotated payload templates for authorized testing. Each template includes why it works in the injection context, detection signatures, and mitigations.

  • pentest_guide

    Returns a step-by-step methodology playbook for the given attack vector, scoped to authorized testing. Each phase covers what to look for, tools, detection indicators for defenders, and mitigations.

  • pentest_lookup_technique

    Looks up a MITRE ATT&CK technique by ID or keyword. Returns description, tactics, detection data sources, behavioral indicators, mitigations, and real-world procedure examples.

  • pentest_map_techniques

    Given a target profile (stack, services, auth type, OS), returns ranked ATT&CK techniques and OWASP test cases most relevant to that authorized engagement.

skills & danger signals github-tarball
prompt-surface shipped agent-instruction files + hidden-content / dangerous-code findings — quoted from the analyzed source

analyzed commit a30242d · analyzer v18 · 31m ago

skills & prompt files 33

danger signals1

code evidence vHEAD · github-tarball
evidence-backed findings quoted directly from the published source artifact — not inferred

filesystem 14

  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/build-changelog.ts :32 import { existsSync, readdirSync, readFileSync, writeFileSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/build.ts :17 import { copyFile, mkdir, readFileSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/check-docs-sync.ts :22 import { existsSync, readFileSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/check-skill-versions.ts :33 import { existsSync, readFileSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/check-skills-sync.ts :37 import { existsSync, readdirSync, readFileSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/clean.ts :15 import { readdir, rm } from 'node:fs/promises';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/devcheck.ts :3 import { existsSync, readFileSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/lint-mcp.ts :19 import { existsSync, readdirSync, readFileSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/lint-packaging.ts :26 import { existsSync, readFileSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/list-skills.ts :21 import { existsSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/refresh-attack.ts :16 import { existsSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/release-github.ts :33 import { existsSync, readFileSync } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/scripts/tree.ts :24 import type { Dirent } from 'node:fs';
  • fs wallieinformal201-pentest-mcp-server-a30242d/src/services/attack/attack-service.ts :6 import { readFileSync } from 'node:fs';

shell / exec 6

  • shell wallieinformal201-pentest-mcp-server-a30242d/scripts/build.ts :16 import { execFile } from 'node:child_process';
  • shell wallieinformal201-pentest-mcp-server-a30242d/scripts/check-framework-antipatterns.ts :33 import { spawnSync } from 'node:child_process';
  • shell wallieinformal201-pentest-mcp-server-a30242d/scripts/check-skill-versions.ts :32 import { spawnSync } from 'node:child_process';
  • shell wallieinformal201-pentest-mcp-server-a30242d/scripts/devcheck.ts :2 import { type ChildProcess, spawn, spawnSync } from 'node:child_process';
  • shell wallieinformal201-pentest-mcp-server-a30242d/scripts/release-github.ts :32 import { spawnSync } from 'node:child_process';
  • shell wallieinformal201-pentest-mcp-server-a30242d/src/data/payloads/command-injection.ts :18 'Never pass user-controlled input to shell commands. Use language-native APIs instead of system(), exec(), popen(). If OS execution is required, use allowlisted arguments only.',

network 1

  • net wallieinformal201-pentest-mcp-server-a30242d/scripts/refresh-attack.ts :37 const res = await fetch(GITHUB_API_LATEST, {

declared dependencies 10

  • @cyanheads/mcp-ts-core@^0.9.21
  • pino-pretty@^13.1.3
  • zod@^4.4.3
  • @biomejs/biome@^2.4.16
  • @types/node@^25.9.1
  • depcheck@^1.4.7
  • ignore@^7.0.5
  • tsc-alias@^1.8.17
  • typescript@^5.9.3
  • vitest@^4.1.8