Is AutomatedEmulation safe to use?

AutomatedEmulation has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.

How do I install AutomatedEmulation?

AutomatedEmulation can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with AutomatedEmulation?

AutomatedEmulation is compatible with claude-desktop, cursor, claude-code. It uses sse and http transport.

Is AutomatedEmulation actively maintained?

AutomatedEmulation is less actively maintained — last commit was 187 days ago. It has 210 GitHub stars.

AutomatedEmulation

Name: AutomatedEmulation
Author: iknowjason

by iknowjason

An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built for IaC stability, consistency, and speed.

210 0 tools GitHub

No known CVEs

MIT license

Stale

Last commit 187d ago

Works with most clients

Transport: sse, http

0 tools

Grade F

Edit this pageView history

Security DevOps

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopsse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "automatedemulation": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/automatedemulation)](https://mcppedia.org/s/automatedemulation)

Read me

What AutomatedEmulation does

Added the Caldera MCP server plugin, Bountyhunter plugin. Added automated download of emu plugin payloads. Caldera now has the capability to use the MCP server as a wrapper to the Caldera API, helping give context to LLMs for building new abilities, operation planners, and a CTI with RAG integration. See this MITRE blog for more information.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

32/100across 5 weighted dimensions

How we score →

0255075100

−68

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is AutomatedEmulation safe to use?: AutomatedEmulation has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.
How do I install AutomatedEmulation?: AutomatedEmulation can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with AutomatedEmulation?: AutomatedEmulation is compatible with claude-desktop, cursor, claude-code. It uses sse and http transport.
Is AutomatedEmulation actively maintained?: AutomatedEmulation is less actively maintained — last commit was 187 days ago. It has 210 GitHub stars.

Similar servers

Others in security / devops

View all →

Mcp Gitlab96

MCP server for using the GitLab API

1.6k 12

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

Alibabacloud Devops Mcp Server92

Yunxiao MCP Server provides AI assistants with the ability to interact with the Yunxiao platform. It provides a set of tools that interact with Yunxiao's API, allowing AI assistants to manage Codeup repository, Project, Pipeline, Packages etc.

116 7

Mcp Gitlab Server92

Enhanced MCP server for GitLab: group projects listing and activity tracking

51 2

MCP Security Weekly

Get CVE alerts and security updates for AutomatedEmulation and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security DevOps

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopsse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "automatedemulation": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/automatedemulation)](https://mcppedia.org/s/automatedemulation)

Read me

What AutomatedEmulation does

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

Automated Emulation with Caldera MCP Server!

Update for 11/16/25: Caldera MCP Server plugin!

Overview

Automated Emulation is a simple terraform template creating a customizable and automated Breach and Attack Simulation lab. It automically builds the following resources hosted in AWS:

One Linux server deploying Caldera and VECTR (vectr.io).
Linux Server: The latest Caldera 5.3 with Magma VueJS web application.
One Windows Client (Windows Server 2022) auto-configured for Caldera agent deployment, and other Red & Blue tools.
Windows Client: Atomic Red Team (ART) automated deployment.
Windows Client: Sysmon automated deployment.
Caldera MCP server plugin installed.
Exposes an MLflow server for observability, tracing, and debug of Caldera LLM inference calls.
Caldera Bountyhunter plugin installed.
Caldera EMU plugin: Auto-downloads payloads. This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense.

See the Features and Capabilities section for more details.

Requirements and Setup

Tested with:

Mac OS 13.4
terraform 1.5.7

Clone this repository:

git clone https://github.com/iknowjason/AutomatedEmulation

Credentials Setup:

Generate an IAM programmatic access key that has permissions to build resources in your AWS account. Setup your .env to load these environment variables. You can also use the direnv tool to hook into your shell and populate the .envrc. Should look something like this in your .env or .envrc:

export AWS_ACCESS_KEY_ID="VALUE"
export AWS_SECRET_ACCESS_KEY="VALUE"

Build and Destroy Resources

Run terraform init

Change into the AutomatedEmulation working directory and type:

terraform init

Run terraform plan or apply

terraform apply -auto-approve

terraform plan -out=run.plan
terraform apply run.plan

Destroy resources

terraform destroy -auto-approve

View terraform created resources

The lab has been created with important terraform outputs showing services, endpoints, IP addresses, and credentials. To view them:

terraform output

Features and Capabilities

Important Firewall and White Listing

By default when you run terraform apply, your public IPv4 address is determined via a query to ifconfig.so and the terraform.tfstate is updated automatically. If your location changes, simply run terraform apply to update the security groups with your new public IPv4 address. If ifconfig.me returns a public IPv6 address, your terraform will break. In that case you'll have to customize the white list. To change the white list for custom rules, update this variable in sg.tf:

locals {
  src_ip = "${chomp(data.http.firewall_allowed.response_body)}/32"
  #src_ip = "0.0.0.0/0"
}

Caldera

Caldera Linux Server

Caldera is built on an Ubuntu Linux 22.04 AMI automatically with SSL support for admin console. The following local project files are important for customization:

bas.tf: The terraform file that builds the Linux server and all terraform variables for Caldera.
files/bas/bootstrap.sh.tpl: The boostrap script for Caldera and other services.
files/bas/local.yml.tpl: The Caldera configuration file that is automatically deployed
files/bas/caldera.service: The caldera service file that is automatically installed
files/bas/abilities/: A local directory with custom abilities that will automatic

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

32/100across 5 weighted dimensions

How we score →

0255075100

−68

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is AutomatedEmulation safe to use?: AutomatedEmulation has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.
How do I install AutomatedEmulation?: AutomatedEmulation can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with AutomatedEmulation?: AutomatedEmulation is compatible with claude-desktop, cursor, claude-code. It uses sse and http transport.
Is AutomatedEmulation actively maintained?: AutomatedEmulation is less actively maintained — last commit was 187 days ago. It has 210 GitHub stars.