Is Pentest Mcp safe to use?

Pentest Mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.

How do I install Pentest Mcp?

Pentest Mcp supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What AI clients work with Pentest Mcp?

Pentest Mcp is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio and sse and http transport.

Is Pentest Mcp actively maintained?

Pentest Mcp is actively maintained — last commit was 16 days ago. It has 131 GitHub stars.

Pentest Mcp

NOT for educational purposes: An MCP server for professional penetration testers including STDIO/HTTP/SSE support, nmap, go/dirbuster, nikto, JtR, hashcat, wordlist building, and more.

ActiveNot tested

Education Security

★ 131↓ 81/wknpm GitHub

60BNo CVEsactiveMIT

Quick Install

{
  "mcpServers": {
    "pentest-mcp": {
      "args": [
        "-y",
        "pentest-mcp"
      ],
      "command": "npx"
    }
  }
}

Setup guide

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/pentest-mcp)](https://mcppedia.org/s/pentest-mcp)

Should you use this server?

Professional penetration-testing MCP server with modern transport/auth support and expanded recon tooling.

✓

Is it safe?

No known CVEs for pentest-mcp.

No authentication — any process on your machine can connect.

MIT. View license →

✓

Is it maintained?

Last commit 16 days ago. 131 stars. 81 weekly downloads.

Will it work with my client?

Transport: stdio, sse, http. Works with Claude Desktop, Cursor, Claude Code, and most MCP clients.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y 'pentest-mcp' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Score Breakdown

MCPpedia Score

Click each category to see evidence

60B

Last scored 21h ago

How we score →

Security

23/30

No known vulnerabilities.

✓

Known CVEs — No known CVEs for pentest-mcpcheck OSV.dev

○

Tool safety — No tools to analyze

○

Tool poisoning — No tools to analyze

○

Injection vectors — No tools to analyze

✓

Tool stability — Tool definitions stable

○

Dependency health — found on deps.dev, recently updated

✓

License — License: MIT

○

Authentication — No authentication required

Frequently Asked Questions

Is Pentest Mcp safe to use?: Pentest Mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.
How do I install Pentest Mcp?: Pentest Mcp supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with Pentest Mcp?: Pentest Mcp is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio and sse and http transport.
Is Pentest Mcp actively maintained?: Pentest Mcp is actively maintained — last commit was 16 days ago. It has 131 GitHub stars.

Pentest Mcp

Quick Install

Should you use this server?

Test This Server

Score Breakdown

MCPpedia Score

Security

Reviews

Frequently Asked Questions

Similar servers

Arxiv Mcp Server

Deepwiki Mcp

MCPpedia

MediaWiki MCP Server

Discussion