DARK-MATER-Kali-Linux-MCP-Server by ZYNIQ-AI-Driven-Development-Firm - MCP Server

DARK MATER | MCP Kali Server v2.0

🔒 Production-Ready Security Testing Platform

A powerful Model Context Protocol (MCP) server for security testing with Kali Linux tools

🏢 Powered by Zyniq Solutions

🚀 Key Features

🔐 Secure Authentication

Enrollment-based API key system with bearer token authentication

🛡️ Schema Validation

JSON Schema validation for all tool arguments and responses

🎯 Smart Guardrails

CIDR-based targeting with destructive operation controls

📦 Artifact Storage

Automatic storage and parsing of tool outputs with summaries

🧠 Memory Hooks

Lightweight observation recording for analysis patterns

🌐 Remote Access

Ngrok tunneling support for secure remote connectivity

🏗️ Architecture Highlights

🌐 HTTP API: RESTful endpoints for DARK MATER MCP Client integration
🔧 Systemd Integration: Production-ready service with automatic startup
🔒 Optional TLS/mTLS: Support for encrypted connections
⚡ High Performance: Async FastAPI backend with concurrent tool execution

🚀 Quick Start Guide

🎯 Easy Installation & Startup

🎯 Option 1: Automated Installation (Recommended)

1. Install the server (requires root):

curl -sSL https://raw.githubusercontent.com/khalilpreview/MCP-Kali-Server/main/install.sh | sudo bash

2. Start with the CLI tool:

sudo dark-mater_kali-mcp start-server

⚙️ Option 2: Manual Installation

For advanced users or custom deployments

📖 See detailed manual installation steps below

⚙️ Option 2: Manual Installation (If online installer has issues)

Clone the repository:

# Create directories and user
sudo useradd --system --home-dir /opt/mcp-kali-server --shell /bin/false mcpserver || true
sudo mkdir -p /opt/mcp-kali-server

# Clone repository first
sudo rm -rf /opt/mcp-kali-server/* 2>/dev/null || true
sudo git clone https://github.com/khalilpreview/MCP-Kali-Server.git /tmp/mcp-kali-server
sudo cp -r /tmp/mcp-kali-server/* /opt/mcp-kali-server/
sudo rm -rf /tmp/mcp-kali-server
sudo chown -R mcpserver:mcpserver /opt/mcp-kali-server

Important: You'll need to push the corrected files to GitHub first:

# From your Windows development directory:
git add -A
git commit -m "Fix ngrok integration and auth dependency issues"
git push origin main

Install dependencies:

# System dependencies
sudo apt-get update
sudo apt-get install -y python3-pip python3-venv python3-dev build-essential git curl nmap sqlite3 ca-certificates python3-requests

# Python environment
sudo -u mcpserver python3 -m venv /opt/mcp-kali-server/venv
sudo -u mcpserver /opt/mcp-kali-server/venv/bin/pip install -r /opt/mcp-kali-server/requirements.txt

Setup configuration:

# Create config directories
sudo mkdir -p /etc/mcp-kali /var/lib/mcp/{artifacts,memory}
sudo chown -R mcpserver:mcpserver /var/lib/mcp

# Generate enrollment token
sudo python3 -c "
import json, secrets, socket, datetime
server_id = f'kali-{socket.gethostname()}-{int(datetime.datetime.now().timestamp())}'
token = secrets.token_urlsafe(32)
data = {'id': server_id, 'token': token, 'created': datetime.datetime.now().isoformat()}
with open('/etc/mcp-kali/enroll.json', 'w') as f: json.dump(data, f)
print('Enrollment token created:', data)
"

# Create scope config
echo '{"allowed_cidrs":["10.0.0.0/8","192.168.0.0/16","172.16.0.0/12"],"allow_destructive":false}' | sudo tee /etc/mcp-kali/scope.json

# Install CLI tool globally
sudo chmod +x /opt/mcp-kali-server/dark-mater_kali-mcp
sudo ln -sf /opt/mcp-kali-server/dark-mater_kali-mcp /usr/local/bin/dark-mater_kali-mcp

Start the server:
```
sudo dark-mater_kali-mcp start-server
```

🎨 CLI Features

🎨	DARK MATER ASCII banner	🌐	Interactive ngrok setup
🚀	Automatic server startup	📋	Enrollment information display
🎛️	Interactive management menu	📊	Real-time health monitoring

🎛️ CLI Management Tool

The `dark-mater_kali-mcp` CLI tool provides comprehensive server management

✨ CLI Features Overview

🎨 Beautiful Interface

DARK MATER ASCII banner
Colored output and progress indicators
Interactive menus and prompts

🚀 Smart Automation

Automatic server startup
Health monitoring and status checks
Graceful error handling

🌐 Network Features

Interactive ngrok configuration
Token management and validation
Public URL generation

📊 Management Tools

Real-time enrollment status
Server information display
Interactive control panel

🖥️ Server Management Commands

🔍 Check Server Status

📊 View Server Logs

🎮 Manual Control

🔍 Check if Server is Running

# Check server process
ps aux | grep kali_server | grep -v grep

# Test server connectivity
curl -sS http://localhost:5000/health

# Check server port
netstat -tlnp | grep :5000

📊 View Server Logs

# View live logs
tail -f /var/log/mcp-kali-server.log

# View last 50 lines
tail -50 /var/log/mcp-kali-server.log

# Search for errors
grep ERROR /var/log/mcp-kali-server.log

🎮 Manual Server Control

# Start server (without ngrok)
/opt/mcp-kali-server/venv/bin/python /opt/mcp-kali-server/kali_server.py --bind 0.0.0.0:5000

# Start server in background
nohup /opt/mcp-kali-server/venv/bin/python /opt/mcp-kali-server/kali_server.py --bind 0.0.0.0:5000 > /var/log/mcp-kali-server.log 2>&1 &

# Kill server process
pkill -f kali_server.py

- Server restart functionality - Log viewing capabilities - Health testing - Artifacts management - Graceful shutdown

Usage

# Start the server with interactive setup
sudo dark-mater_kali-mcp start-server

# The CLI will guide you through:
# 1. Ngrok token configuration (optional)
# 2. Server startup
# 3. Enrollment information display
# 4. Interactive management menu

🧪 First Launch & Testing

The server includes an automatic first-launch setup that ensures project integrity:

# First launch automatically runs comprehensive tests
python kali_server.py --bind 0.0.0.0:5000

# Manual test suite execution (anytime)
python tests/run_tests.py

# Test specific components
python tests/unit/test_server.py          # Unit tests
python tests/integration/test_server_live.py  # Integration tests  
python tests/acceptance/test_complete_live_enhanced.py  # End-to-end tests

What happens on first launch:

✅ Environment Validation - Checks Python version, dependencies, project structure
✅ Comprehensive Testing - Runs all unit, integration, and acceptance tests
✅ Project Integrity - Validates all components are working correctly
✅ Setup Completion - Marks setup as complete for future launches

Test Categories:

Unit Tests - Individual component testing (schema validation, core logic)
Integration Tests - API endpoints and tool integration testing
Acceptance Tests - End-to-end user workflow testing
System Tests - LLM integration and system-level testing

Starting the Server

After successful first launch and testing, you have multiple ways to start the server:

🎯 Recommended: CLI Tool (Easy & Interactive)

# Start with the beautiful CLI interface
sudo dark-mater_kali-mcp start-server

This provides:

Beautiful DARK MATER ASCII banner
Interactive ngrok setup
Automatic enrollment display
Real-time server management

⚙️ Systemd Service (Background)

# Start as system service
sudo systemctl start mcp-kali-server
sudo systemctl status mcp-kali-server

# Enable auto-start on boot
sudo systemctl enable mcp-kali-server

🚀 Direct Execution (Development/Non-systemd)

# Run directly (foreground)
/opt/mcp-kali-server/venv/bin/python /opt/mcp-kali-server/kali_server.py --bind 0.0.0.0:5000

# Background with logging
nohup /opt/mcp-kali-server/venv/bin/python /opt/mcp-kali-server/kali_server.py --bind 0.0.0.0:5000 > /var/log/mcp-kali-server.log 2>&1 &

# With ngrok tunnel (background)
export NGROK_AUTHTOKEN=your_token_here
nohup /opt/mcp-kali-server/venv/bin/python /opt/mcp-kali-server/kali_server.py --bind 0.0.0.0:5000 --ngrok > /var/log/mcp-kali-server.log 2>&1 &

# Check logs
tail -f /var/log/mcp-kali-server.log

🔧 Enhanced CLI Features

The server includes a comprehensive CLI with enhanced authentication information:

# Display comprehensive authentication info
python kali_server.py --show-auth

# Show full server configuration
python kali_server.py --show-config

# Test connection to running server
python kali_server.py --test-connection

# Generate client configurations
python kali_server.py --generate-client-config curl        # Ready-to-use curl commands
python kali_server.py --generate-client-config python      # Python client code
python kali_server.py --generate-client-config powershell  # PowerShell commands
python kali_server.py --generate-client-config json        # JSON configuration

# Enhanced help with examples
python kali_server.py --help

CLI Features:

🔐 Complete Authentication Display - API keys, server IDs, endpoints
💻 Ready-to-Use Commands - Generated curl, Python, and PowerShell examples
🔍 Connection Testing - Validate server health and connectivity
⚙️ Configuration Management - View and validate all settings
📚 Self-Documenting - All endpoints and usage examples included
🎯 Multi-Platform Support - Works on Windows, Linux, and macOS

Alternative: Manual Installation

# Download and run the installer
curl -sSL https://raw.githubusercontent.com/khalilpreview/MCP-Kali-Server/main/install.sh | sudo bash

# Or clone and run locally
git clone https://github.com/khalilpreview/MCP-Kali-Server.git
cd MCP-Kali-Server
sudo chmod +x install.sh
sudo ./install.sh

The installer will:

Create a dedicated mcpserver user
Install the server to /opt/mcp-kali-server
Set up systemd service
Generate enrollment token
Install global CLI tool

Optional: Enable Ngrok Tunneling

For remote access without port forwarding:

Get ngrok auth token from ngrok dashboard

Configure the service:

sudo systemctl edit mcp-kali-server

Add:

[Service]
Environment="NGROK_AUTHTOKEN=your_token_here"
ExecStart=
ExecStart=/opt/mcp-kali-server/venv/bin/# Run in development mode

python kali_server.py --debug --bind 127.0.0.1:8000

Run with ngrok tunnel for testing

python kali_server.py --debug --bind 127.0.0.1:8000 --ngrok --ngrok-authtoken YOUR_TOKEN


### Adding New Tools

Restart the service:

sudo systemctl daemon-reload
sudo systemctl restart mcp-kali-server

Get the public URL:

sudo journalctl -u mcp-kali-server -f | grep "tunnel established"

Enrollment

After installation, follow these steps to register your server:

Step 1 — Locate the enrollment token

The installer created this file:

/etc/mcp-kali/enroll.json

Check it:

cat /etc/mcp-kali/enroll.json

You'll see something like:

{"id":"kali-host-1727890000","token":"AbCdEfGh123XYZ","created":"2025-10-02T12:00:00Z"}

Step 2 — Call the enroll endpoint

With the server running, send a POST to /enroll with that ID + token. Example:

curl -sS -X POST http://localhost:5000/enroll \
  -H "Content-Type: application/json" \
  -d '{"id":"kali-host-1727890000","token":"AbCdEfGh123XYZ","label":"Kali-Lab-1"}'

Step 3 — Get your API key

The server should respond like this:

{
  "server_id": "kali-host-1727890000",
  "api_key": "3qP7eD9xL0...<long-random-key>...",
  "label": "Kali-Lab-1"
}

That api_key is what you'll use in the Authorization: Bearer <api_key> header for all other endpoints (/health, /tools/list, /tools/call, /artifacts/...).

Step 4 — Verify it works

curl -sS http://localhost:5000/health \
  -H "Authorization: Bearer <api_key>"

If you see { "ok": true, ... }, your server is properly registered and ready.

API Usage

Health Check

curl -H "Authorization: Bearer YOUR_API_KEY" \
  "http://SERVER_IP:5000/health"

List Available Tools

curl -H "Authorization: Bearer YOUR_API_KEY" \
  "http://SERVER_IP:5000/tools/list"

Execute Network Scan

curl -X POST "http://SERVER_IP:5000/tools/call" \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "name": "net.scan_basic",
    "arguments": {
      "target": "192.168.1.1",
      "fast": true
    }
  }'

List Artifacts

curl -H "Authorization: Bearer YOUR_API_KEY" \
  "http://SERVER_IP:5000/artifacts/list?limit=10"

Read Artifact

curl -H "Authorization: Bearer YOUR_API_KEY" \
  "http://SERVER_IP:5000/artifacts/read?uri=artifact://server-id/run-id/raw.xml"

Configuration

Scope Configuration

Edit /etc/mcp-kali/scope.json to control targeting and destructive operations:

{
  "allowed_cidrs": [
    "10.0.0.0/8",
    "192.168.0.0/16", 
    "172.16.0.0/12"
  ],
  "allow_destructive": false
}

allowed_cidrs: List of CIDR ranges that tools can target
allow_destructive: Whether to allow potentially destructive operations

TLS Configuration

Enable TLS with environment variables:

# Server TLS (HTTPS)
export MCP_TLS_CERT="/path/to/server.crt"
export MCP_TLS_KEY="/path/to/server.key"

# Mutual TLS (client certificates required)
export MCP_MTLS_CA="/path/to/ca.crt"

# Restart the service
sudo systemctl restart mcp-kali-server

Available Tools

net.scan_basic

Basic network scanning using nmap with safety constraints.

Schema: /schemas/tools/net_scan_basic.json

Arguments:

target (required): IP address, hostname, or CIDR range
ports (optional): Port specification (e.g., "80,443" or "1-1000")
fast (optional): Use fast scan mode (default: true)

Example:

{
  "name": "net.scan_basic",
  "arguments": {
    "target": "192.168.1.0/24",
    "ports": "22,80,443",
    "fast": true
  }
}

metasploit.exploit

Metasploit exploit module execution with comprehensive safety controls.

Schema: /schemas/tools/metasploit_exploit.json

Arguments:

module (required): Metasploit exploit module path (e.g., "exploit/windows/smb/ms17_010_eternalblue")
target (required): Target IP address or hostname
payload (optional): Payload to use (default: "generic/shell_reverse_tcp")
lhost (optional): Local host for reverse connections (default: "127.0.0.1")
lport (optional): Local port for reverse connections (default: 4444)
rport (optional): Remote port on target (default: 445)
check_only (recommended): Only check vulnerability, don't exploit (default: true)
safe_mode (recommended): Enable additional safety checks (default: true)
timeout (optional): Execution timeout in seconds (default: 180)

Safe Example (Vulnerability Check):

{
  "name": "metasploit.exploit",
  "arguments": {
    "module": "exploit/windows/smb/ms17_010_eternalblue",
    "target": "192.168.1.100",
    "check_only": true,
    "safe_mode": true
  }
}

⚠️ Advanced Example (Requires allow_destructive: true):

{
  "name": "metasploit.exploit",
  "arguments": {
    "module": "exploit/windows/smb/ms17_010_eternalblue",
    "target": "192.168.1.100",
    "payload": "windows/meterpreter/reverse_tcp",
    "lhost": "192.168.1.50",
    "lport": 4444,
    "check_only": false,
    "safe_mode": false
  }
}

metasploit.auxiliary

Metasploit auxiliary modules for scanning, enumeration, and reconnaissance.

Schema: /schemas/tools/metasploit_auxiliary.json

Arguments:

module (required): Auxiliary module path (e.g., "auxiliary/scanner/smb/smb_version")
target (required): Target IP address, hostname, or CIDR range
rport (optional): Remote port on target system
threads (optional): Number of concurrent threads (default: 10)
timeout (optional): Execution timeout in seconds (default: 300)
options (optional): Additional module-specific options

Example:

{
  "name": "metasploit.auxiliary",
  "arguments": {
    "module": "auxiliary/scanner/smb/smb_version",
    "target": "192.168.1.0/24",
    "threads": 20,
    "options": {
      "ShowProgress": "true"
    }
  }
}

Common Safe Auxiliary Modules:

auxiliary/scanner/smb/smb_version - SMB version detection
auxiliary/scanner/ssh/ssh_version - SSH version banner
auxiliary/scanner/http/http_version - HTTP server detection
auxiliary/scanner/discovery/arp_sweep - ARP-based host discovery
auxiliary/scanner/portscan/tcp - TCP port scanning

Project Structure

mcp-kali-server/               # Project root
├── kali_server.py             # 🚀 Main server entrypoint with enhanced CLI
├── setup_first_launch.py     # 🧪 First launch setup and test runner
├── mcp_server/                # 📦 Core server package
│   ├── api.py                 # FastAPI application with all endpoints
│   ├── auth.py                # Authentication & enrollment system
│   ├── artifacts.py           # Artifact storage & parsing
│   ├── memory.py              # Memory and observation recording
│   ├── scope.py               # Security guardrails & validation
│   ├── tools.py               # Tool execution engine
│   ├── util.py                # Utilities & schema validation
│   └── schemas/               # JSON schemas for tool validation
│       └── tools/
│           ├── net_scan_basic.json      # Network scanning
│           ├── web_nikto.json           # Web vulnerability scanning
│           ├── web_dirb.json            # Directory bruteforcing
│           ├── ssl_sslyze.json          # SSL/TLS analysis
│           ├── net_masscan.json         # High-speed port scanning
│           ├── metasploit_exploit.json  # Exploit modules
│           └── metasploit_auxiliary.json # Auxiliary modules
├── mcp_tools/                 # 🔧 Extended tool implementations
│   ├── manager.py             # Tool registry and management
│   ├── ai_analyzer.py         # AI-powered result analysis
│   └── [additional tools]     # Extended security tools
├── tests/                     # 🧪 Comprehensive test suite
│   ├── run_tests.py           # Main test runner (run this first!)
│   ├── README.md              # Test documentation
│   ├── unit/                  # Unit tests for components
│   │   ├── test_server.py     # Core server functionality
│   │   ├── test_schema.py     # Schema validation testing
│   │   └── test_schema_validation.py # Validation system tests
│   ├── integration/           # API and integration tests
│   │   ├── test_server_live.py        # Live server testing
│   │   ├── test_production_api.py     # Production API testing
│   │   ├── test_llm_config.py         # LLM integration testing
│   │   └── [additional integration tests]
│   ├── acceptance/            # End-to-end acceptance tests
│   │   └── test_complete_live_enhanced.py # Full system testing
│   └── system/                # System-level tests
│       ├── test_llm_integration.py    # LLM system integration
│       └── test_llm_system.py         # LLM system functionality
├── demos/                     # 📋 Demo scripts and examples
│   ├── README.md              # Demo documentation
│   ├── demo_credentials.py    # Authentication information display
│   ├── demo_monitored_server.py # Server with comprehensive monitoring
│   ├── demo_simple_server.py  # Windows-compatible server
│   ├── demo_logs.py           # Logging demonstration
│   └── demo_llm_config.py     # LLM configuration examples
├── requirements.txt           # Python dependencies
├── install.sh                 # Installation script
└── README.md                  # This file

# Runtime Configuration & Data
~/.mcp-kali/                   # User configuration directory
├── credentials.json           # API credentials
├── enroll.json               # Enrollment tokens
├── scope.json                # Security scope configuration
├── memory/                   # Memory database
│   └── observations.db       # SQLite database
└── audit/                    # Audit logs
    └── audit.db              # Audit trail database

# Artifact Storage
/var/lib/mcp/                 # System-wide data directory
├── artifacts/               # Tool output storage
│   └── {server-id}/
│       └── {run-id}/
│           ├── raw.xml       # Raw tool output
│           ├── summary.txt   # Auto-generated summary
│           ├── parsed.json   # Parsed structured data
│           └── metadata.json # Artifact metadata
└── logs/                    # System logs
    └── server.log           # Server operation logs

Service Management

# Check service status
sudo systemctl status mcp-kali-server

# View logs
sudo journalctl -u mcp-kali-server -f

# Restart service
sudo systemctl restart mcp-kali-server

# Stop service
sudo systemctl stop mcp-kali-server

# Disable service
sudo systemctl disable mcp-kali-server

Testing Connection

Test the complete workflow:

#!/bin/bash
SERVER_IP="192.168.1.100"
API_KEY="your-api-key-here"

# 1. Health check
echo "Testing health endpoint..."
curl -s -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/health" | jq

# 2. List tools
echo -e "\nListing available tools..."
curl -s -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/tools/list" | jq

# 3. Run scan
echo -e "\nRunning network scan..."
curl -s -X POST "http://${SERVER_IP}:5000/tools/call" \
  -H "Authorization: Bearer ${API_KEY}" \
  -H "Content-Type: application/json" \
  -d '{
    "name": "net.scan_basic",
    "arguments": {
      "target": "127.0.0.1",
      "fast": true
    }
  }' | jq

# 4. List artifacts
echo -e "\nListing artifacts..."
curl -s -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/artifacts/list" | jq

# 5. Check memory
echo -e "\nChecking memory stats..."
curl -s -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/memory/stats" | jq

🤖 AI-Powered Analysis

The MCP Kali Server includes intelligent analysis capabilities powered by Ollama AI models. This feature provides automated insights, recommendations, and executive summaries of your security testing activities.

Setup AI Analysis

Install Ollama on your system:

# Linux/WSL
curl -fsSL https://ollama.ai/install.sh | sh

# Start Ollama service
ollama serve

Download a model (recommended: llama2 or codellama):

ollama pull llama2

Configure environment variables (optional):

export OLLAMA_URL="http://localhost:11434"
export OLLAMA_MODEL="llama2"

AI Analysis Features

🔍 Job Analysis

Analyzes completed tool executions and provides structured insights:

# Analyze a completed job
curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/tools/jobs/${JOB_ID}/analyze"

Response includes:

Summary: High-level overview of what was discovered
Findings: Detailed security findings and vulnerabilities
Severity: Risk assessment (Critical/High/Medium/Low/Info)
Recommendations: Suggested next steps for testing
Context: Security posture implications

🎯 Smart Tool Suggestions

Get AI recommendations for next tools to run based on current findings:

# Get tool suggestions based on scan results  
curl -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/tools/jobs/${JOB_ID}/suggestions"

Example response:

{
  "suggestions": [
    {
      "tool": "nikto",
      "reason": "Web server detected on port 80, recommend vulnerability scanning",
      "priority": "High"
    },
    {
      "tool": "gobuster",
      "reason": "Directory enumeration to discover hidden web content",
      "priority": "Medium"
    }
  ]
}

📋 Executive Summaries

Generate comprehensive summaries for multiple completed jobs:

# Generate executive summary for all jobs
curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  -H "Content-Type: application/json" \
  "http://${SERVER_IP}:5000/tools/analysis/executive-summary"

# Generate summary for specific jobs
curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  -H "Content-Type: application/json" \
  -d '{"job_ids": ["job-123", "job-456", "job-789"]}' \
  "http://${SERVER_IP}:5000/tools/analysis/executive-summary"

Executive Summary includes:

Overview: High-level summary of testing activities
Critical Findings: Most important security issues discovered
Risk Assessment: Overall security posture evaluation
Business Impact: Potential organizational impact
Recommendations: Priority remediation steps

AI Configuration

The AI analysis system can be customized through environment variables:

# Ollama server URL (default: http://localhost:11434)
export OLLAMA_URL="http://your-ollama-server:11434"

# AI model to use (default: llama2)
export OLLAMA_MODEL="codellama"  # or "mistral", "neural-chat", etc.

# Analysis timeout (optional)
export AI_ANALYSIS_TIMEOUT="120"

Supported Models

The system works with various Ollama models:

llama2: General-purpose analysis (recommended)
codellama: Enhanced code and technical analysis
mistral: Fast and efficient analysis
neural-chat: Conversational analysis style
Custom models: Any Ollama-compatible model

Example Workflow

Run a network scan:

JOB_ID=$(curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  -H "Content-Type: application/json" \
  -d '{"name":"nmap.scan","arguments":{"target":"192.168.1.100"}}' \
  "http://${SERVER_IP}:5000/tools/call" | jq -r '.job_id')

Wait for completion and analyze:

# Check job status
curl -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/tools/jobs/${JOB_ID}/status"

# Analyze results with AI
curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/tools/jobs/${JOB_ID}/analyze" | jq

Get next tool suggestions:

curl -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/tools/jobs/${JOB_ID}/suggestions" | jq

Generate executive summary:

curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/tools/analysis/executive-summary" | jq

🧠 LLM Configuration & Knowledge Management

The MCP Kali Server includes a comprehensive LLM configuration system that allows dashboards and AI services to store and retrieve:

System prompts and guardrails for AI assistants
Knowledge documents and searchable chunks for context
Conversation memory per thread
Live server context for dynamic responses

LLM Configuration API

Get/Update LLM Configuration

# Get current LLM configuration
curl -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/llm/config"

# Update configuration with optimistic concurrency
curl -X PUT -H "Authorization: Bearer ${API_KEY}" \
  -H "Content-Type: application/json" \
  -H "If-Match: c4f1c5f5" \
  -d '{
    "system_prompt": "You are a security testing assistant for Kali-Lab-01...",
    "guardrails": {
      "disallowed": ["secrets", "credentials"],
      "style": "concise",
      "max_tokens_hint": 200
    },
    "runtime_hints": {
      "preferred_model": "phi3:mini",
      "num_ctx": 768,
      "temperature": 0.2
    },
    "tools_allowed": ["nmap.scan", "nikto.scan"]
  }' \
  "http://${SERVER_IP}:5000/llm/config"

Knowledge Management

# Create knowledge document
DOC_ID=$(curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  -H "Content-Type: application/json" \
  -d '{"title": "SSH Security Guide", "source": "manual:ssh", "tags": ["ssh", "security"]}' \
  "http://${SERVER_IP}:5000/llm/knowledge/docs" | jq -r '.doc_id')

# Add text chunks
curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  -H "Content-Type: application/json" \
  -d '{
    "chunks": [
      "SSH keys provide better security than passwords",
      "Use ssh-keygen -t ed25519 to generate modern keys",
      "Disable password authentication in /etc/ssh/sshd_config"
    ]
  }' \
  "http://${SERVER_IP}:5000/llm/knowledge/docs/${DOC_ID}/chunks"

# Search knowledge base
curl -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/llm/knowledge/search?q=ssh%20keys&top_k=3"

Conversation Memory

# Append conversation turn
curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  -H "Content-Type: application/json" \
  -d '{
    "thread_id": "chat-session-123",
    "role": "user",
    "content": "How do I scan for SSH vulnerabilities?",
    "meta": {"ip": "192.168.1.100"}
  }' \
  "http://${SERVER_IP}:5000/memory/append"

# Retrieve conversation with context
curl -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/memory/retrieve?thread_id=chat-session-123&q=ssh%20scanning&limit=10"

# Summarize conversation
curl -X POST -H "Authorization: Bearer ${API_KEY}" \
  -H "Content-Type: application/json" \
  -d '{
    "thread_id": "chat-session-123",
    "summary": "User asked about SSH vulnerability scanning. Discussed nmap scripts and recommended security hardening."
  }' \
  "http://${SERVER_IP}:5000/memory/summarize"

Live Context

# Get dynamic server context
curl -H "Authorization: Bearer ${API_KEY}" \
  "http://${SERVER_IP}:5000/llm/context"

Response Example:

{
  "server_id": "kali-lab-01",
  "uptime": "3 days, 4:11",
  "alerts": [],
  "services": [
    {"name": "ssh", "state": "active"},
    {"name": "postgres", "state": "inactive"}
  ],
  "disk_usage": "75.5% (100 GB free)",
  "last_scan": "2025-10-05T10:30:00Z"
}

JWT Authentication for Dashboards

# Get JWT token using API key
JWT_TOKEN=$(curl -X POST -H "Content-Type: application/json" \
  -d '{"api_key": "'${API_KEY}'"}' \
  "http://${SERVER_IP}:5000/auth/token" | jq -r '.access_token')

# Use JWT token for subsequent requests
curl -H "Authorization: Bearer ${JWT_TOKEN}" \
  "http://${SERVER_IP}:5000/llm/config"

Integration with AI Services

The LLM configuration system is designed to support dashboard applications and AI services by providing:

Authoritative Configuration: Server stores the definitive system prompt and guardrails
Contextual Knowledge: Searchable knowledge base with BM25 full-text search
Conversation Continuity: Thread-based memory with semantic search
Dynamic Context: Live server status for context-aware responses
Security Controls: JWT authentication and optimistic concurrency control

Database Schema

The system uses SQLite with FTS5 for efficient text search:

-- LLM Configuration
CREATE TABLE llm_config (
    server_id TEXT PRIMARY KEY,
    system_prompt TEXT NOT NULL,
    guardrails TEXT NOT NULL,     -- JSON
    runtime_hints TEXT NOT NULL, -- JSON  
    tools_allowed TEXT NOT NULL, -- JSON array
    etag TEXT NOT NULL
);

-- Knowledge Documents & Chunks with FTS5 search
CREATE TABLE knowledge_docs (
    doc_id TEXT PRIMARY KEY,
    server_id TEXT NOT NULL,
    title TEXT NOT NULL,
    source TEXT,
    tags TEXT -- JSON array
);

CREATE VIRTUAL TABLE knowledge_fts USING fts5(
    chunk_id UNINDEXED,
    doc_id UNINDEXED, 
    source UNINDEXED,
    text
);

-- Conversation Memory
CREATE TABLE conversation_memory (
    id INTEGER PRIMARY KEY,
    server_id TEXT NOT NULL,
    thread_id TEXT NOT NULL,
    role TEXT CHECK (role IN ('user', 'assistant', 'system')),
    content TEXT NOT NULL,
    meta TEXT -- JSON metadata
);

DARK MATER MCP Client

This server is designed to work seamlessly with the DARK MATER MCP Client - a sophisticated dashboard for managing multiple MCP servers and coordinating security testing operations.

Key Integration Features

🔗 Automatic Discovery: The client can discover and connect to MCP servers
🎯 Centralized Management: Control multiple Kali servers from one interface
📊 Real-time Monitoring: Live server status and health monitoring
🛠️ Tool Orchestration: Execute security tools across multiple servers
📁 Artifact Management: Centralized collection and analysis of results
🧠 Knowledge Base: Shared memory and findings across servers
🤖 LLM Integration: AI-powered configuration and conversation management

Connection Setup

Install and start this MCP server using the CLI tool
Enroll the server to get your API credentials
Add server to client using the enrollment details
Start testing with full dashboard capabilities

The DARK MATER ecosystem provides a complete security testing platform with distributed server management and comprehensive reporting capabilities.

Security Considerations

Network Security

Run on isolated network segments
Use firewall rules to restrict access
Enable TLS for production deployments
Consider mTLS for high-security environments

Scope Limitations

Configure allowed_cidrs to match your testing environment
Set allow_destructive: false for reconnaissance-only mode
Review scope configuration regularly

Authentication

Protect enrollment tokens (stored in /etc/mcp-kali/enroll.json)
Rotate API keys periodically
Monitor authentication failures in logs

File Permissions

Configuration files are root-only readable
Service runs as unprivileged mcpserver user
Artifacts stored with proper ownership

Troubleshooting

Service Won't Start

# Check service status
sudo systemctl status mcp-kali-server

# Check logs for errors
sudo journalctl -u mcp-kali-server --no-pager

# Common issues:
# - Python dependencies missing
# - Permissions on directories
# - Port already in use

Authentication Failures

# Check if enrollment token exists
sudo ls -la /etc/mcp-kali/enroll.json

# Verify API credentials
sudo cat /etc/mcp-kali/credentials.json | jq

# Regenerate enrollment token
sudo rm /etc/mcp-kali/enroll.json
sudo ./install.sh  # Will generate new token

Tool Execution Errors

# Check scope configuration
cat /etc/mcp-kali/scope.json

# Verify nmap is installed
which nmap

# Check tool logs
sudo journalctl -u mcp-kali-server | grep "Tool.*failed"

Network Issues

# Test basic connectivity
curl -I http://SERVER_IP:5000/status

# Check if port is listening
sudo netstat -tlnp | grep :5000

# Verify firewall rules
sudo ufw status

Uninstallation

# Run uninstaller
sudo ./install.sh --uninstall

# Manual cleanup if needed
sudo systemctl stop mcp-kali-server
sudo systemctl disable mcp-kali-server
sudo rm /etc/systemd/system/mcp-kali-server.service
sudo userdel mcpserver
sudo rm -rf /opt/mcp-kali-server
sudo rm -rf /var/lib/mcp

# Configuration files (remove manually if desired)
sudo rm -rf /etc/mcp-kali

Development

Manual Installation

For manual setup or customization:

# As root, create directory and set ownership
mkdir -p /opt/mcp-kali-server
chown -R mcpserver:mcpserver /opt/mcp-kali-server

# Clone repository as mcpserver user
sudo -u mcpserver git clone git@github.com:khalilpreview/MCP-Kali-Server.git /opt/mcp-kali-server

# Create virtual environment and install dependencies
sudo -u mcpserver python3 -m venv /opt/mcp-kali-server/venv
sudo -u mcpserver /opt/mcp-kali-server/venv/bin/pip install -r /opt/mcp-kali-server/requirements.txt

🔧 Troubleshooting Installation

Common installation issues and solutions

🚨 Common Issues

🌐 Online Installer Fails

If curl -sSL ... | sudo bash fails with syntax errors:

Solution 1: Download and inspect first

curl -sSL https://raw.githubusercontent.com/khalilpreview/MCP-Kali-Server/main/install.sh -o install.sh
sudo chmod +x install.sh
sudo ./install.sh

Solution 2: Use manual installation (see Option 2 above)

✅ Recent Fix: The "syntax error near unexpected token `else'" issue has been resolved. The installer now properly detects systemd environments and gracefully handles non-systemd systems (Docker, WSL, chroot).

🔑 Permission Denied on Git Clone

# Fix: Create directory with proper ownership first
sudo mkdir -p /opt/mcp-kali-server
sudo chown -R mcpserver:mcpserver /opt/mcp-kali-server
sudo -u mcpserver git clone https://github.com/khalilpreview/MCP-Kali-Server.git /opt/mcp-kali-server

🔧 CLI Tool Not Found

# Fix: Create symlink manually
sudo ln -sf /opt/mcp-kali-server/dark-mater_kali-mcp /usr/local/bin/dark-mater_kali-mcp
sudo chmod +x /usr/local/bin/dark-mater_kali-mcp

Running Without Systemd

If you're running in Docker, WSL, chroot, or another environment without systemd:

# First, verify your init system (optional)
ps -p 1 -o comm=

# If you don't see "systemd", that's why systemctl fails

Quickest way to run the server:

# Start server in foreground
/opt/mcp-kali-server/venv/bin/python /opt/mcp-kali-server/kali_server.py --bind 0.0.0.0:5000

# Or run in background with nohup to keep it alive
nohup /opt/mcp-kali-server/venv/bin/python /opt/mcp-kali-server/kali_server.py --bind 0.0.0.0:5000 > /var/log/mcp-kali-server.log 2>&1 &

# With ngrok tunnel (if needed)
nohup /opt/mcp-kali-server/venv/bin/python /opt/mcp-kali-server/kali_server.py --bind 0.0.0.0:5000 --ngrok --ngrok-authtoken YOUR_TOKEN > /var/log/mcp-kali-server.log 2>&1 &

Adding New Tools

Create schema in mcp_server/schemas/tools/toolname.json
Add tool executor to ToolRegistry in mcp_server/tools.py
Implement safe argument parsing and execution
Add scope and destructiveness checks
Test thoroughly in isolated environment

API Extensions

The FastAPI app in mcp_server/api.py can be extended with additional endpoints. Follow the existing patterns for authentication and error handling.

📚 Integration Documentation

Complete integration resources for the DARK MATER Client Dashboard

📋 Integration Guide

Complete integration documentation with code examples

🔌 API Reference

Quick API endpoint reference and examples

⚙️ Dashboard Config

Backend setup and configuration guide

🔑 Key Integration Points

Server Enrollment
One-time setup with enrollment token

Bearer Authentication
API key-based authentication

Tool Execution
Schema-validated security tools

Artifact Management
Automatic result storage

Real-time Monitoring
Server health tracking

📄 License & Pricing

🔒 Private Commercial Software

This is a private, commercial product available for purchase.

💰 Commercial License

Professional enterprise solution

🔐 Private Repository

Exclusive access for licensed users

🎯 Premium Support

Dedicated professional support

🤝 Support & Community

🔗 Integration

💼 Purchase & Access

Get Licensed Access to DARK MATER MCP Kali Server

1. Contact
Reach out for pricing

2. License
Purchase commercial license

3. Access
Receive private repo access

4. Deploy
Install and configure

🏢 Enterprise Features

� Private Repository Access - Exclusive source code access
💎 Premium Support - Direct technical support and consultation
🔄 Regular Updates - Priority access to new features and security patches
📋 Commercial License - Full rights for business and enterprise use
🎯 Custom Integration - Tailored deployment and configuration assistance

📞 Contact for Purchase

Company: Zyniq Solutions
Email: contact@zyniq.solutions
License Inquiry: Professional and enterprise licensing available
Support: Premium support included with all licenses

💼 Professional Security Testing Platform

DARK MATER MCP Kali Server - Premium security testing solution for professionals

🔒 Private commercial software by Zyniq Solutions

Contact us for licensing and access

ZYNIQ-AI-Driven-Development-Firm/DARK-MATER-Kali-Linux-MCP-Server

DARK MATER | MCP Kali Server v2.0

🔒 Production-Ready Security Testing Platform

🚀 Key Features

🔐 Secure Authentication

🛡️ Schema Validation

🎯 Smart Guardrails

📦 Artifact Storage

🧠 Memory Hooks

🌐 Remote Access

🏗️ Architecture Highlights

🚀 Quick Start Guide

🎯 Easy Installation & Startup

🎯 Option 1: Automated Installation (Recommended)

⚙️ Option 2: Manual Installation

⚙️ Option 2: Manual Installation (If online installer has issues)

🎨 CLI Features

🎛️ CLI Management Tool

The dark-mater_kali-mcp CLI tool provides comprehensive server management

✨ CLI Features Overview

🎨 Beautiful Interface

🚀 Smart Automation

🌐 Network Features

📊 Management Tools

🖥️ Server Management Commands

🔍 Check Server Status

📊 View Server Logs

🎮 Manual Control

Usage

🧪 First Launch & Testing

Starting the Server

🎯 Recommended: CLI Tool (Easy & Interactive)

⚙️ Systemd Service (Background)

🚀 Direct Execution (Development/Non-systemd)

🔧 Enhanced CLI Features

Alternative: Manual Installation

Optional: Enable Ngrok Tunneling

Run with ngrok tunnel for testing

Enrollment

Step 1 — Locate the enrollment token

Step 2 — Call the enroll endpoint

Step 3 — Get your API key

Step 4 — Verify it works

API Usage

Health Check

List Available Tools

Execute Network Scan

List Artifacts

Read Artifact

Configuration

Scope Configuration

TLS Configuration

Available Tools

net.scan_basic

metasploit.exploit

metasploit.auxiliary

Project Structure

Service Management

Testing Connection

🤖 AI-Powered Analysis

Setup AI Analysis

AI Analysis Features

🔍 Job Analysis

🎯 Smart Tool Suggestions

📋 Executive Summaries

AI Configuration

Supported Models

Example Workflow

🧠 LLM Configuration & Knowledge Management

LLM Configuration API

Get/Update LLM Configuration

Knowledge Management

Conversation Memory

Live Context

JWT Authentication for Dashboards

Integration with AI Services

Database Schema

DARK MATER MCP Client

Key Integration Features

Connection Setup

The `dark-mater_kali-mcp` CLI tool provides comprehensive server management