Skip to main content
Glama
enesjakozh

MCP Server Pentest

by 9olidity
npmGitHub
JavaScript
MIT License
1,556
17
OverviewInspectNewSchemaRelated ServersReviewsScore
Need Help?View Source CodeReport Issue

Features

  • Full browser xss, sql vulnerability automatic detection
  • Screenshots of the entire page or specific elements
  • Comprehensive network interaction (navigation, clicks, form filling)
  • Console log monitoring
  • JavaScript execution in the browser context

Installation

Installing

npx playwright install firefox yarn install npm run build

Configuration

The installation process will automatically add the following configuration to your Claude config file:

{ "mcpServers": { "playwright": { "command": "npx", "args": [ "-y", "/Users/...../dist/index.js" ], "disabled": false, "autoApprove": [] } } }

Components

Tools

broser_url_reflected_xss

Test whether the URL has an XSS vulnerability

{ "url": "https://test.com", "paramName":"text" }

browser_url_sql_injection

Test whether the URL has SQL injection vulnerabilities

{ "url": "https://test.com", "paramName":"text" }

browser_navigate

Navigate to any URL in the browser

{ "url": "https://stealthbrowser.cloud" }
browser_screenshot

Capture screenshots of the entire page or specific elements

{ "name": "screenshot-name", // required "selector": "#element-id", // optional "fullPage": true // optional, default: false }
browser_click

Click elements on the page using CSS selector

{ "selector": "#button-id" }
browser_click_text

Click elements on the page by their text content

{ "text": "Click me" }
browser_hover

Hover over elements on the page using CSS selector

{ "selector": "#menu-item" }
browser_hover_text

Hover over elements on the page by their text content

{ "text": "Hover me" }
browser_fill

Fill out input fields

{ "selector": "#input-field", "value": "Hello World" }
browser_select

Select an option in a SELECT element using CSS selector

{ "selector": "#dropdown", "value": "option-value" }
browser_select_text

Select an option in a SELECT element by its text content

{ "text": "Choose me", "value": "option-value" }
browser_evaluate

Execute JavaScript in the browser console

{ "script": "document.title" }
Install Server
A
security – no known vulnerabilities
A
license - permissive license
A
quality - confirmed to work

How are these scores calculated?

local-only server

The server can only run on the client's local machine because it depends on local resources.

Tools

View all tools

A security testing tool that enables automated vulnerability detection including XSS and SQL injection, along with comprehensive browser interaction capabilities for web application penetration testing.

  1. Installation
    1. Installing
  2. Configuration
    1. Components
      1. Tools

    Related Resources

    Related MCP Servers

    • BrowserTools MCP

      oenius
      A
      security
      A
      license
      A
      quality
      A browser monitoring and interaction tool that enables AI applications to capture and analyze browser data through a Chrome extension, supporting functions like console monitoring, screenshots, DOM analysis, and website auditing.
      Last updated -
      14
      93
      1
      JavaScript
      MIT License

    • MCP Frontend Testing Server

      StudentOfJS
      A
      security
      A
      license
      A
      quality
      Provides tools for frontend testing including code analysis, test generation, test execution, and React component testing for Jest and Cypress frameworks.
      Last updated -
      4
      17
      TypeScript
      MIT License

    • Kali Linux MCP Server

      sfz009900
      A
      security
      F
      license
      A
      quality
      A tool that allows penetration testing through Kali Linux commands executed via a Multi-Conversation Protocol server, supporting security testing operations like SQL injection and command execution.
      Last updated -
      5
      39
      TypeScript

    • MCP Vulnerability Management System

      nesirat
      -
      security
      A
      license
      -
      quality
      A comprehensive system that helps organizations track, manage, and respond to security vulnerabilities effectively through features like vulnerability tracking, user management, support tickets, API key management, and SSL certificate management.
      Last updated -
      Python
      MIT License

    View all related MCP servers

    Appeared in Searches

    New MCP Servers

    MCP directory API

    We provide all the information about MCP servers via our MCP API.

    curl -X GET 'https://glama.ai/api/mcp/v1/servers/9olidity/MCP-Server-Pentest'

    If you have feedback or need assistance with the MCP directory API, please join our Discord server