AIBase
EN
Explore
MCP Server Pt
M

MCP Server Pt

Web Application Penetration Testing MCP is a comprehensive tool focusing on the analysis of business logic security vulnerabilities. Through systematic crawling and analysis, it can identify security issues that standard scanners cannot detect.
SecurityDeveloper tools#Penetration testing#Business logic#Security analysis#Automated scanning.Python
2.5 points
6.1K
Open Site

Overview

Content Details

Alternatives

What is Web Application Penetration Testing MCP?

Web Application Penetration Testing MCP is a tool specifically designed to analyze the security of web applications. It can not only detect common vulnerabilities but also thoroughly examine potential risks in business logic.

How to use Web Application Penetration Testing MCP?

You can start the scan through simple command - line operations, generate detailed reports, and visually display the application structure.

Applicable scenarios

Suitable for enterprises or teams that need to conduct regular security reviews, especially in scenarios where business logic security is a concern.

Main features

Automatically build application structure diagrams
Systematically crawl and map the entire web application, including all links, forms, and interactive elements.
Intelligent authentication processing
Automatically identify login/logout pages and support authentication based on cookies or Bearer Tokens.
In - depth business logic analysis
Detect potential IDOR (Insecure Direct Object Reference) vulnerabilities, permission control issues, and anomalies in multi - step workflows.
Advanced input testing
Generate corresponding test values according to field types and mine sensitive information in hidden fields.
Visualization support
Generate site maps in DOT format for easy graphical viewing via Graphviz.
Advantages
Comprehensively cover areas not reached by standard scanners
Powerful business logic analysis capabilities
Support multiple authentication mechanisms
Limitations
May require more manual intervention in complex environments
Some advanced features depend on specific configurations

How to use

Install the tool
Clone the project repository and install dependencies in the local environment.
Start the scan
Run the script and specify the target URL to start the scan.
Generate visual charts
Use the Graphviz tool to generate site map images.

Usage examples

Basic scan
Perform a basic security scan on a specified website.
Scan with authentication
Simulate the scanning process in a logged - in state.
Visual output
Convert the scan results into an intuitive graphical view.

Frequently Asked Questions

Does it support custom request headers?
Can the scanning speed be adjusted?
How to limit the scanning scope?

Related resources

Official documentation
Detailed introduction to the tool's functions and usage.
GitHub code repository
Source code hosting address.
Example video tutorial
Watch a demonstration video on how to quickly get started with the tool.

Installation

Copy the following command to your Client for configuration
Note: Your key is sensitive information, do not share it with anyone.

Alternatives

V
Vestige
Vestige is an AI memory engine based on cognitive science. By implementing 29 neuroscience modules such as prediction error gating, FSRS - 6 spaced repetition, and memory dreaming, it provides long - term memory capabilities for AI. It includes a 3D visualization dashboard and 21 MCP tools, runs completely locally, and does not require the cloud.
Rust
10.6K
4.5 points
M
Moltbrain
MoltBrain is a long-term memory layer plugin designed for OpenClaw, MoltBook, and Claude Code, capable of automatically learning and recalling project context, providing intelligent search, observation recording, analysis statistics, and persistent storage functions.
TypeScript
9.2K
4.5 points
B
Bm.md
A feature-rich Markdown typesetting tool that supports multiple style themes and platform adaptation, providing real-time editing preview, image export, and API integration capabilities
TypeScript
14.9K
5 points
S
Security Detections MCP
Security Detections MCP is a server based on the Model Context Protocol that allows LLMs to query a unified security detection rule database covering Sigma, Splunk ESCU, Elastic, and KQL formats. The latest version 3.0 is upgraded to an autonomous detection engineering platform that can automatically extract TTPs from threat intelligence, analyze coverage gaps, generate SIEM-native format detection rules, run tests, and verify. The project includes over 71 tools, 11 pre-built workflow prompts, and a knowledge graph system, supporting multiple SIEM platforms.
TypeScript
7.8K
4 points
P
Paperbanana
Python
9.1K
5 points
B
Better Icons
An MCP server and CLI tool that provides search and retrieval of over 200,000 icons, supports more than 150 icon libraries, and helps AI assistants and developers quickly obtain and use icons.
TypeScript
9.7K
4.5 points
A
Assistant Ui
assistant - ui is an open - source TypeScript/React library for quickly building production - grade AI chat interfaces, providing composable UI components, streaming responses, accessibility, etc., and supporting multiple AI backends and models.
TypeScript
10.0K
5 points
A
Apify MCP Server
The Apify MCP Server is a tool based on the Model Context Protocol (MCP) that allows AI assistants to extract data from websites such as social media, search engines, and e-commerce through thousands of ready-to-use crawlers, scrapers, and automation tools (Apify Actors). It supports OAuth and Skyfire proxy payment and can be integrated into MCP clients such as Claude and VS Code through HTTPS endpoints or local stdio.
TypeScript
9.0K
5 points
M
Markdownify MCP
Markdownify is a multi-functional file conversion service that supports converting multiple formats such as PDFs, images, audio, and web page content into Markdown format.
TypeScript
38.2K
5 points
G
Gitlab MCP Server
Certified
The GitLab MCP server is a project based on the Model Context Protocol that provides a comprehensive toolset for interacting with GitLab accounts, including code review, merge request management, CI/CD configuration, and other functions.
TypeScript
28.5K
4.3 points
D
Duckduckgo MCP Server
Certified
The DuckDuckGo Search MCP Server provides web search and content scraping services for LLMs such as Claude.
Python
81.9K
4.3 points
N
Notion Api MCP
Certified
A Python-based MCP Server that provides advanced to-do list management and content organization functions through the Notion API, enabling seamless integration between AI models and Notion.
Python
24.1K
4.5 points
U
Unity
Certified
UnityMCP is a Unity editor plugin that implements the Model Context Protocol (MCP), providing seamless integration between Unity and AI assistants, including real - time state monitoring, remote command execution, and log functions.
C#
38.6K
5 points
F
Figma Context MCP
Framelink Figma MCP Server is a server that provides access to Figma design data for AI programming tools (such as Cursor). By simplifying the Figma API response, it helps AI more accurately achieve one - click conversion from design to code.
TypeScript
69.9K
4.5 points
G
Gmail MCP Server
A Gmail automatic authentication MCP server designed for Claude Desktop, supporting Gmail management through natural language interaction, including complete functions such as sending emails, label management, and batch operations.
TypeScript
24.1K
4.5 points
M
Minimax MCP Server
The MiniMax Model Context Protocol (MCP) is an official server that supports interaction with powerful text-to-speech, video/image generation APIs, and is suitable for various client tools such as Claude Desktop and Cursor.
Python
55.5K
4.8 points
AIBase
Zhiqi Future, Your AI Solution Think Tank
English简体中文繁體中文にほんご
© 2026AIBase