MCP Orchestration (Headless)
Available MCP Servers (Configured By entrypoint.sh)
- •
filesystem: read/write under/pentest,/tmp,/var/log - •
fetch: HTTP client (mcp-server-fetch) - •
playwright: headless browser automation - •
memory: scratch memory for the session - •
promptfoo: run evals/redteam - •
trivy: runtrivy mcpfor scans - •
semgrep: runsemgrep-mcpfor repo scans - •
sqlite: local db at/pentest/mcp.sqlite - •
kubernetes: cluster inspection (useskubectlconfig)
Conventions
- •Always write artifacts to
/pentest/(never to$HOME). - •Cache expensive results and summarize them into
/pentest/reports/. - •If an MCP server is unavailable, fall back to the CLI tool directly.