Tengu (Pentesting MCP)
MCP server turning Claude into a penetration testing copilot. Orchestrates 80 security tools (Nmap to Metasploit) with 20 resources, 35 guided prompts, human-in-the-loop for destructive actions, and audit logging.
- Orchestrate dozens of security testing tools from one interface
- Run authorized penetration tests with human approval checkpoints
- Generate audit-ready security assessment reports automatically
Comprehensive AI-assisted pentesting with proper guardrails. Human-in-the-loop for destructive actions and full audit logging show mature security thinking.
Professional penetration testers with proper authorization. NOT for general developers. Requires local installation of security tools (Nmap, Metasploit, etc.).
https://github.com/rfunix/tengu
By rfunix
How to Get It
Trust Signals Automated Scan
Data & Access
Community Pulse Growing
Discussed on Hacker News
- Tengu – An MCP server that turns Claude into a pentester's copilot — Hacker News · 1 pts
1 mentions across 1 sources
Reviewer notes
Automated Scan review. These are observations, not a security certification.
Offensive security tool by design. Human-in-the-loop for destructive actions is a good safety control. Audit logging present.
How to evaluate tools before deploying →
Data shown here comes from public APIs and automated scanning. Reviewer notes reflect one person's experience. This is not a security certification or legal recommendation. Always evaluate tools according to your own organization's policies.