Download Latest Version
3.1.11 Skill is all you need source code.tar.gz (115.7 MB)
Get an email when there's a new version of VIPER
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| 3.1.11 Skill is all you need source code.tar.gz | 2026-03-31 | 115.7 MB | |
| 3.1.11 Skill is all you need source code.zip | 2026-03-31 | 116.3 MB | |
| README.md | 2026-03-31 | 3.0 kB | |
| Totals: 3 Items | 232.1 MB | 0 | |
优化
- 更新MCP服务器,压缩docstring,占用更少上下文,修复BUG MCP服务器
新功能
- 新增 Claude Code Plugin,通过Claude Code插件市场安装后,可以在Claude Code中使用Viper的MCP Tools,实现无缝衔接的AI辅助红队操作.
开发者笔记
Claude 提出的 MCP 和 Skill 的两个核心概念,在Viper中得到了很好的实现.通过MCP服务器,我们将Viper的功能以API的形式暴露出来,而Skill则是对这些功能的封装和组合,使得用户可以更高效地使用这些功能. 使用Viper进行内网渗透,或者说使用任何工具进行内网渗透,都是有"套路"的,但是这个"套路"更多的是在思维层面上的,而不是在具体的操作步骤上. 每个内网环境都是独特的,需要根据实际情况进行调整和适应. 而Viper的Skill则是对这些"套路"的一种抽象和封装,使得用户可以更高效地使用这些"套路",而不需要关心具体的操作细节. 而所有的这些动作动作基本都需要 Session 这个桥梁在内网主机中执行,所以将 Session 的功能都通过MCP开放出来让 skill 可以调用,是 AI 驱动内网渗透的基础. 未来我们还会继续增加更多的 MCP API,让 Skill 可以调用更多的功能,从而实现更加强大和智能的内网渗透能力.
Improvements
- Updated the MCP Server, compressed docstrings to use less context, and fixed bugs.
New Features
- Added the Claude Code Plugin. After installing it from the Claude Code plugin marketplace, you can use Viper MCP tools directly inside Claude Code for seamless AI-assisted red team operations.
Developer Notes
The two core concepts introduced by Claude — MCP and Skill — are implemented very well in Viper. Through the MCP server, we expose Viper capabilities as APIs, while Skills package and combine those capabilities so users can work with them more efficiently.
Using Viper for internal network penetration testing — or using any tool for that purpose — always involves certain common patterns. But those patterns mainly exist at the level of thinking and strategy, rather than as fixed operational steps.
Every internal environment is unique, so you need to adapt based on the actual situation. Viper Skills abstract and package these patterns so users can apply them more efficiently without focusing on low-level operational details.
Nearly all of these actions require a Session as the bridge for execution on internal hosts, so exposing Session capabilities through MCP for Skills to call is the foundation of AI-driven internal network penetration testing.
In the future, we will continue adding more MCP APIs so Skills can call more capabilities and deliver stronger, smarter internal network penetration testing workflows.
