by DMontgomery40 · MCP Server · ★ 127
Pentest MCP Professional penetration-testing MCP server with modern transport/auth support and expanded recon tooling. What Changed in 0.9.0 Upgraded MCP SDK to Kept MCP Inspector at the latest release () with bundled launcher Streamable HTTP is now the primary network transport () SSE is still available only as a deprecated compatibility mode Added bearer-token auth with OIDC JWKS and introspection support Added first-class tools: , , , , , , , Added report-admin tools: , Added SoW capture flow for reports using MCP elicitation () with safe template fallback Hardened command resolution so...
| Stars | 127 |
| Forks | 27 |
| Language | JavaScript |
| Category | MCP Server |
| License | MIT |
| Quality Score | 74.0792867332492/100 |
| Open Issues | 1 |
| Last Updated | 2026-03-23 |
| Created | 2025-04-04 |
| Platforms | mcp, node |
| Est. Tokens | ~564k |
These tools work well together with pentest-mcp for enhanced workflows:
Explore other popular mcp server tools:
pentest-mcp is NOT for educational purposes: An MCP server for professional penetration testers including STDIO/HTTP/SSE support, nmap, go/dirbuster, nikto, JtR, hashcat, wordlist building, and more.. It is categorized as a MCP Server with 127 GitHub stars.
pentest-mcp is primarily written in JavaScript. It covers topics such as cybersecurity, dirbuster, gobuster.
You can find installation instructions and usage details in the pentest-mcp GitHub repository at github.com/DMontgomery40/pentest-mcp. The project has 127 stars and 27 forks, indicating an active community.
pentest-mcp is released under the MIT license, making it free to use and modify according to the license terms.