Metasploit MCP Server

Bridges large language models with the Metasploit Framework to enable natural language control over penetration testing workflows. It provides tools for searching modules, executing exploits, generating payloads, and managing active sessions.

→ fishke22/MetasploitMCP · listed on glama

Install from

Glama

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings

✅

No credential exfiltration, no sensitive file access, no obfuscation

Static analysis found nothing flowing your secrets to unexpected places.

✅

Open source with a license and README

Anyone can audit the code, the license is declared, and the publisher documents what it does.

// full audit trail

The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.

// improvement guidance — verified publishers only

We have 1 concrete improvement we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.

// embed badge in your README

[![M8ven Score](https://m8ven.ai/badge/mcp/fishke22-metasploitmcp-1ctyxd)](https://m8ven.ai/mcp/fishke22-metasploitmcp-1ctyxd)

commit: 3cd1dff20bc5674aa586056c7877490626222a5c

code hash: f86bee26bfe034cb7936cbaf0ea43d1415202db7c511a1624e9c259bebc5ba68

verified: 4/11/2026, 3:22:53 PM

view raw JSON →