What is pentest-mcp-server?

pentest-mcp-server is an MCP (Model Context Protocol) server by cyanheads in the Security category. Offline methodology engine for authorized penetration testing, CTF, and security research.

How do I connect pentest-mcp-server to Claude, Cursor, or another MCP client?

pentest-mcp-server is a remote MCP server — add its endpoint (https://pentest.caseyjhand.com/mcp) to your client's MCP configuration (for example with "claude mcp add", or under "mcpServers" in Cursor's mcp.json) and restart the client.

Is pentest-mcp-server open source?

Yes — the source code is public at github.com/cyanheads/pentest-mcp-server, with 1 GitHub stars.

Can AI agents pay to use pentest-mcp-server?

Not yet through Loomal — pentest-mcp-server is listed as a free directory entry. If its maintainer verifies ownership, they can set per-call USDC pricing that agents pay over x402, with settlement on Base.

pentest-mcp-server

MCP server by github.com/cyanheads/pentest-mcp-server

Offline methodology engine for authorized penetration testing, CTF, and security research.

1 starsnpm: @cyanheads/pentest-mcp-serverRemote-capable

About pentest-mcp-server

pentest-mcp-server is an MCP (Model Context Protocol) server published by cyanheads in the official MCP registry, listed under Security on Loomal. Offline methodology engine for authorized penetration testing, CTF, and security research.

pentest-mcp-server runs as a hosted remote over streamable-http — MCP clients connect directly to its endpoint, with nothing to install locally. It also ships as an npm package (@cyanheads/pentest-mcp-server), so any MCP client that can launch a local process can run it.

Development happens in the open at github.com/cyanheads/pentest-mcp-server, where the project has earned 1 GitHub stars.

Use pentest-mcp-server with your agent

Claude Code · one command

claude mcp add --transport http pentest-mcp-server https://pentest.caseyjhand.com/mcp

Claude Desktop, Cursor & other MCP clients · config

{
  "mcpServers": {
    "pentest-mcp-server": {
      "url": "https://pentest.caseyjhand.com/mcp"
    }
  }
}

streamable-httphttps://pentest.caseyjhand.com/mcp

npm@cyanheads/pentest-mcp-server

Frequently asked questions

What is pentest-mcp-server?: pentest-mcp-server is an MCP (Model Context Protocol) server by cyanheads in the Security category. Offline methodology engine for authorized penetration testing, CTF, and security research.
How do I connect pentest-mcp-server to Claude, Cursor, or another MCP client?: pentest-mcp-server is a remote MCP server — add its endpoint (https://pentest.caseyjhand.com/mcp) to your client's MCP configuration (for example with "claude mcp add", or under "mcpServers" in Cursor's mcp.json) and restart the client.
Is pentest-mcp-server open source?: Yes — the source code is public at github.com/cyanheads/pentest-mcp-server, with 1 GitHub stars.
Can AI agents pay to use pentest-mcp-server?: Not yet through Loomal — pentest-mcp-server is listed as a free directory entry. If its maintainer verifies ownership, they can set per-call USDC pricing that agents pay over x402, with settlement on Base.

More Security MCP servers

idea-reality-mcp

719

Pre-build reality check. Scans GitHub, HN, npm, PyPI, Product Hunt — returns 0-100 signal.

skylos

453

Dead code, security, secrets detection and code quality for Python, TypeScript, Go.

MCPProxy

253

Local-first MCP proxy with BM25 tool discovery, security scanning, quarantine & ~99% token savings

mcp-afip

252

AFIP — Argentine tax authority, electronic invoicing (Factura Electrónica)

mcp-ap2

252

MCP server for AP2 — Google's Agent-to-Agent Payment Protocol (authorization, audit, trust)

OpenClaw MCP Server

172

MCP server bridging Claude.ai/Desktop with self-hosted OpenClaw via OAuth 2.1.

Browse the full MCP server directory

Listing data from the official MCP registry and GitHub, refreshed periodically. Not affiliated with the maintainer unless claimed. Maintain pentest-mcp-server? Claim this listing free by verifying GitHub ownership, or contact us.