Skip to main content
The Model Context Protocol (MCP) server provides a standardized interface that lets any compatible AI model or agent access your Pentest-Tools.com account, running scans, managing targets, retrieving findings, and generating reports. Connect to our MCP server in Claude, Cursor, VS Code, and other clients using either the local server or our hosted remote server.

Setup instructions

General

Our MCP server supports both local (stdio) and remote (HTTP) transports:
TransportAddress
Localptt mcp (requires pip install pentesttools[mcp])
Remotehttps://mcp.pentest-tools.com/mcp/
Authentication requires your Pentest-Tools.com API key. Get it from My Account > API in the web application.
API access requires a paid plan that includes it. See Authentication for details.

Claude Code

claude mcp add --transport http ptt-mcp https://mcp.pentest-tools.com/mcp/ --header "PTT_API_KEY: <your_api_key_here>"

Claude Desktop

Edit your Claude Desktop configuration file:
  • macOS: ~/Library/Application Support/Claude/claude_desktop_config.json
  • Windows: %APPDATA%\Claude\claude_desktop_config.json
  • Linux: ~/.config/Claude/claude_desktop_config.json
Local server 
{
  "mcpServers": {
    "ptt-mcp": {
      "command": "ptt",
      "args": ["mcp"],
      "env": {
        "PTT_API_KEY": "your_api_key_here"
      }
    }
  }
}
Remote server Claude Desktop only supports local, stdio-based communication. Its paid plan Connectors don’t support custom headers, so you need npx mcp-remote as a local bridge to the remote server. Make sure npm is installed before you start. 
{
  "mcpServers": {
    "ptt-mcp": {
      "command": "npx",
      "args": ["-y", "mcp-remote", "https://mcp.pentest-tools.com/mcp/", "--header", "PTT_API_KEY:<your_api_key_here>"]
    }
  }
}
Restart Claude Desktop after saving.

Cursor

Install in Cursor sets up the remote server. You’ll need to add your API key after installation. Or configure manually: Local server 
{
  "servers": {
    "ptt-mcp": {
      "type": "stdio",
      "command": "ptt",
      "args": ["mcp"],
      "env": {
        "PTT_API_KEY": "your_api_key_here"
      }
    }
  }
}
Remote server 
{
  "servers": {
    "ptt-mcp": {
      "type": "http",
      "url": "https://mcp.pentest-tools.com/mcp/",
      "headers": {
        "PTT_API_KEY": "your_api_key_here"
      }
    }
  }
}

Visual Studio Code

  1. Press Ctrl/Cmd + P and search for MCP: Add Server
  2. Select Command (stdio)
  3. Enter: ptt mcp
  4. Set environment variable PTT_API_KEY to your API key
Or add manually to your settings: 
{
  "servers": {
    "ptt-mcp": {
      "type": "stdio",
      "command": "ptt",
      "args": ["mcp"],
      "env": {
        "PTT_API_KEY": "your_api_key_here"
      }
    }
  }
}

Gemini CLI

gemini mcp add ptt-mcp --transport http https://mcp.pentest-tools.com/mcp/ --header "PTT_API_KEY: <your_api_key_here>"
Or add manually to ~/.gemini/settings.json: 
{
  "mcpServers": {
    "ptt-mcp": {
      "url": "https://mcp.pentest-tools.com/mcp/",
      "type": "http",
      "headers": {
        "PTT_API_KEY": "your_api_key_here"
      }
    }
  }
}

Others

Configure other MCP-compatible tools with:
SettingLocalRemote
Commandptt-
Argumentsmcp-
URL-https://mcp.pentest-tools.com/mcp/
EnvironmentPTT_API_KEY=your_api_key-
Headers-PTT_API_KEY: your_api_key

Installation

For local server usage, install the Python package: 
pip install pentesttools[mcp]
For development: 
git clone https://github.com/pentesttoolscom/pentesttools-pypi
cd pentesttools-pypi
pip install -e .[mcp]
Python 3.10 or higher is required.

Available tools

The MCP server provides tools for:
CategoryTools
ScanningWebsite Scanner, Subdomain Finder, Network Scanner
TargetsList, add, delete targets
ScansStart, stop, get status, get output
FindingsList findings, get details, import findings
ReportsCreate, download, delete reports
WorkspacesList, create, edit, delete workspaces
UtilitiesHTTP loggers, VPN profiles, report translation
The server also exposes read-only resources (scans, targets, workspaces, findings, reports, HTTP loggers, and wordlists) that give the AI background context without tool calls.

Built-in prompts

Pre-built prompts for common workflows:
PromptDescription
pentestFull pentesting workflow for a target
subdomainsDiscover all subdomains for a domain
is_upCheck if a target is accessible
summaryExecutive summary for scans in a workspace
vibeseccodingDeploy, scan, and remediate a Dockerized application via terminal commands

Use cases

Use the MCP server to chain tools together and run multi-step security workflows through natural language.

Rapid reconnaissance

Map a target’s attack surface without running each scanner manually. Ask the AI to perform a recon scan, and it will call the subdomain finder, review the results, and run the network scanner on live assets to find open ports.

Smart vulnerability triage

Ask the AI to pull findings from a workspace and summarize only the critical SQL injection vulnerabilities from that week. It filters by your criteria and explains the results, which is faster than scrolling through the dashboard.

Report translation

The translate_report tool fetches the report, translates each finding, imports the translated versions, and generates a new report for your regional teams. The limit is 50 findings per hour, so start with smaller reports or allow extra time for large ones.
When downloading a PDF report via MCP, tell the AI to save it to a local file rather than display it. The API returns raw binary data, which can flood your context window with unreadable text.

Executive reporting

Use the summary prompt to get a risk overview with remediation priorities, written for people who don’t need to know what a CVE is.

Secure coding

For developers using agentic IDEs like Cursor or Copilot. Run a scan on your local Docker app, and the AI reads the relevant source files, proposes patches, and confirms the fix with a follow-up scan.

Limitations

Tool count: The server exposes a small number of tools on purpose. Most LLM clients perform worse as the tool count grows. Progress reporting: Scans report progress via scan ID and status updates. Some clients, including VS Code, can’t display progress bars for long-running operations. Authenticated scanning: The Website Scanner supports login form, cookie, and header authentication, but not recorded authentication. The AI builds these parameters itself, so it may need a few attempts for complex configurations. Provide explicit examples in your prompts. Plan limits: Your scan capacity (parallel scans, assets per cycle, and queued scans) depends on your subscription. Hitting these limits causes queuing, delays, or errors. Parallel scanning: All tools are asynchronous, but running multiple scans in parallel is unreliable at the moment. Report translation quota: translate_report is limited to roughly 50 findings per hour.

FAQ

API access is available on paid plans. MCP integration is currently available on WebNetSec and Pentest Suite. Check your plan details in Plan details & billing > Active plan or contact support if you receive a 403 error.
Use the local server if you have Python installed and want faster response times. Use the remote server for simpler setup without local dependencies.
Website Scanner authentication has complex configuration options. LLMs may need a few attempts to construct parameters correctly. Provide explicit examples in your prompts for best results.
Use get_vpn_profiles to retrieve your VPN profile UUIDs, then pass vpn_profile_uuid to your scan tool. If a target IP is private (RFC 1918), always include a VPN profile. Don’t wait for the scan to fail before checking.
Most MCP clients ask for permission before calling tools. This is helpful for understanding what actions the AI takes. You can disable this once you’re confident in the workflow.