Is Read Team Mcp Server safe to use?

Read Team Mcp Server has 1 known CVE tracked by MCPpedia. You can verify these on OSV.dev by searching for "pymetasploit3". Review the Security section above for details before installing.

How do I install Read Team Mcp Server?

Read Team Mcp Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What can Read Team Mcp Server do?

Read Team Mcp Server provides 7 tools: port_scanner, vulnerability_scanner, ssh_command_execution, ssh_brute_force, search_exploits_fast and 2 more. See the full tools list on the server page for descriptions and parameters.

What AI clients work with Read Team Mcp Server?

Read Team Mcp Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.

Is Read Team Mcp Server actively maintained?

Read Team Mcp Server is recently maintained — last commit was 45 days ago. It has 15 GitHub stars.

Read Team Mcp Server

Name: Read Team Mcp Server
Author: skjortan23

pymetasploit3 · by skjortan23

15 7 tools GitHub PyPI

1 open CVE

No license

Maintained

Last commit 45d ago

Works with most clients

Transport: stdio

7 tools · ~892 tok

Grade B · 0.4% of 200K ctx

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "read-team-mcp-server": {
      "args": [
        "pymetasploit3"
      ],
      "command": "uvx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/read-team-mcp-server)](https://mcppedia.org/s/read-team-mcp-server)

Read me

What Read Team Mcp Server does

An MCP (Model Context Protocol) server for AI agents to use during red teaming exercises.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'pymetasploit3' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

77/100across 5 weighted dimensions

How we score →

0255075100

−23

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

1 open

CVE-2026-5463lowCVSS 3.1

pymetasploit3 vulnerable to command injection in console.run_module_with_output()

Command injection vulnerability in console.run_module_with_output() in pymetasploit3 through version 1.0.6 allows attackers to inject newline characters into module options such as RHOSTS. This breaks the intended command structure and causes the Metasploit console to execute additional unintended commands, potentially leading to arbitrary command execution and manipulation of Metasploit sessions.

Affected: >= 0source →

Inventory

Tools (7)

Click any tool to inspect its schema.

~892 tokens total

Inventory

Resources (2)

exploit_findings

MongoDB collection storing all discovered exploits with metadata including CVE references, platform information, rank, author, and compatible payloads

mongodb://localhost:27017/metasploit/exploits

scan_findings

MongoDB collection storing results from port scans, vulnerability scans, and SSH reconnaissance

mongodb://localhost:27017/redteam/findings

Inventory

Prompts (1)

step_by_step_hacking

Prompt for step by step hacking of a machine (referenced in agents/simple_agent.py)

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Read Team Mcp Server safe to use?: Read Team Mcp Server has 1 known CVE tracked by MCPpedia. You can verify these on OSV.dev by searching for "pymetasploit3". Review the Security section above for details before installing.
How do I install Read Team Mcp Server?: Read Team Mcp Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Read Team Mcp Server do?: Read Team Mcp Server provides 7 tools: port_scanner, vulnerability_scanner, ssh_command_execution, ssh_brute_force, search_exploits_fast and 2 more. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Read Team Mcp Server?: Read Team Mcp Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is Read Team Mcp Server actively maintained?: Read Team Mcp Server is recently maintained — last commit was 45 days ago. It has 15 GitHub stars.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

io.github.jasonxkensei/xproof92

Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.

1 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

9.0k 3

Nothumanallowed91

Security-first platform for AI agents. 38 specialized agents, 15 AI-powered extensions, zero-knowledge multi-agent orchestration. SENTINEL WAF, Ed25519 auth, 2.6M grounding facts.

97 5

MCP Security Weekly

Get CVE alerts and security updates for Read Team Mcp Server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "read-team-mcp-server": {
      "args": [
        "pymetasploit3"
      ],
      "command": "uvx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/read-team-mcp-server)](https://mcppedia.org/s/read-team-mcp-server)

Read me

What Read Team Mcp Server does

An MCP (Model Context Protocol) server for AI agents to use during red teaming exercises.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'pymetasploit3' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

Red-team-mcp

An MCP (Model Context Protocol) server for AI agents to use during red teaming exercises.

Overview

This server provides resources and tools for AI agents to access during red teaming scenarios. It implements the Model Context Protocol to allow AI agents to retrieve information, access tools, and perform actions needed for security testing and evaluation.

Architecture

graph TD
    Agent[AI Agent Client] <--> |MCP Protocol| Server[FastMCP Server]

    subgraph "MCP Server Components"
        Server --> PortScanner[Port Scanner Module]
        Server --> VulnScanner[Vulnerability Scanner Module]
        Server --> SSHTools[SSH Tools Module]
        Server --> Metasploit[Metasploit Integration]
        Server --> DomainDiscovery[Domain Discovery Module]
        Server <--> Database[(MongoDB Database)]
    end

    subgraph "External Tools"
        PortScanner --> Masscan[masscan]
        VulnScanner --> Nuclei[nuclei]
        SSHTools --> SSH[SSH Client]
        Metasploit --> MSFRPC[Metasploit RPC]
        DomainDiscovery --> Subfinder[subfinder]
    end

    Database --> Findings[Findings]

Components

1. Port Scanner

Integrates with masscan for high-speed port scanning
Allows AI agents to discover open ports and services on target networks
Configurable scan parameters (IP ranges, port ranges, scan rate)
Results parsing and formatting for agent consumption

2. Vulnerability Scanner

Integrates with Nuclei for vulnerability detection
Supports custom templates and severity filtering
Stores results in MongoDB for fast searching

3. SSH Tools

SSH command execution with credential authentication
SSH brute force capabilities with username/password lists
Results stored with host and port information

4. Metasploit Integration

Exploit Database: Pre-populated MongoDB collection with all Metasploit exploits
Fast Search: Search exploits by platform, CVE, rank, author, or keywords
Exploit Execution: Execute exploits against targets with payload configuration
Live Querying: Real-time exploit listing from Metasploit RPC server

Implementation Plan

Set up basic MCP server structure
Implement masscan integration with parameter validation
Create result parsing and storage mechanisms
Add additional components (forthcoming)
Implement logging and monitoring
Build permission and boundary systems

Todos

Add nuclei scanner
Add SSH scanner
Add Metasploit integration
Implement fully asynchronous FastMCP server
Add tests
Prompt for step by step hacking of a machine. (See agents/simple_agent.py)

Setup

installing 3rp party tools

The setup is depending on the following tools

mongodb
nuclei

Exploit Database Setup

To enable fast exploit searching, populate the Metasploit exploits database:

Prerequisites:
- Metasploit Framework installed
- MongoDB running on localhost:27017
- Metasploit RPC server running: msfrpcd -P msf -a 127.0.0.1
- Python dependencies: pip install pymetasploit3
Populate Database:
```
python scripts/setup_exploits_db.py
```
Test Setup:
```
python scripts/test_exploits_db.py
```

This creates a searchable database of all Metasploit exploits with metadata including:

CVE references
Platform information
Exploit rank and author
Compatible payloads
Required options

Usage

Exploit Search Examples

# Search Windows SMB exploits
search_exploits_fast(platform='windows', search_term='smb')

# Find EternalBlue exploit
search_exploits_fast(cve='CVE-2017-0144')

# Get high-quality exploits
search_exploits_fast(rank='excellent')

# Search by author
search_exploits_fast(author='hdm')

Development

Details on extending the server with new tools and resources will be added.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

77/100across 5 weighted dimensions

How we score →

0255075100

−23

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

1 open

CVE-2026-5463lowCVSS 3.1

pymetasploit3 vulnerable to command injection in console.run_module_with_output()

Affected: >= 0source →

Inventory

Tools (7)

Click any tool to inspect its schema.

~892 tokens total

Inventory

Resources (2)

exploit_findings

MongoDB collection storing all discovered exploits with metadata including CVE references, platform information, rank, author, and compatible payloads

mongodb://localhost:27017/metasploit/exploits

scan_findings

MongoDB collection storing results from port scans, vulnerability scans, and SSH reconnaissance

mongodb://localhost:27017/redteam/findings

Inventory

Prompts (1)

step_by_step_hacking

Prompt for step by step hacking of a machine (referenced in agents/simple_agent.py)

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Read Team Mcp Server safe to use?: Read Team Mcp Server has 1 known CVE tracked by MCPpedia. You can verify these on OSV.dev by searching for "pymetasploit3". Review the Security section above for details before installing.
How do I install Read Team Mcp Server?: Read Team Mcp Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Read Team Mcp Server do?: Read Team Mcp Server provides 7 tools: port_scanner, vulnerability_scanner, ssh_command_execution, ssh_brute_force, search_exploits_fast and 2 more. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Read Team Mcp Server?: Read Team Mcp Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is Read Team Mcp Server actively maintained?: Read Team Mcp Server is recently maintained — last commit was 45 days ago. It has 15 GitHub stars.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

io.github.jasonxkensei/xproof92

Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.

1 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

9.0k 3

Nothumanallowed91

Security-first platform for AI agents. 38 specialized agents, 15 AI-powered extensions, zero-knowledge multi-agent orchestration. SENTINEL WAF, Ed25519 auth, 2.6M grounding facts.

97 5

MCP Security Weekly

Get CVE alerts and security updates for Read Team Mcp Server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?