John Doesec-mcp Stack
Security-focused MCP stack routed through mcpo, with Open WebUI + Ollama included.
This stack is ROCm-only for Ollama.
Included MCP servers
triv3/mcp-kali-serverk3nn3dy-ai/kali-mcpGH05TCREW/MetasploitMCPsocteam-ai/nvd-cve-mcp-serverdtkmn/mcp-zap-serverzcaceres/markdownify-mcp
Files
docker-compose.yml- Main stack (Ollama runs with ROCm)mcpo-config.template.json- Templatedmcpomulti-server config.env.example- Environment variable templateOPENWEBUI_MCP_SETUP.md- Step-by-step MCP setup inside Open WebUI
Quick start
Prerequisites for Ollama on ROCm hosts:
- Linux host with ROCm-compatible AMD GPU
- Device access available for
/dev/kfdand/dev/dri
Running in Proxmox LXC?
- Follow the dedicated LXC section in
OPENWEBUI_MCP_SETUP.mdbefore launching (includes known caveats and quick fixes).
- Create env file:
Copy-Item .env.example .env
Generate strong API keys for ZAP + MCP-ZAP and set them in .env:
PowerShell:
$zapKey = -join ((48..57 + 65..90 + 97..122) | Get-Random -Count 48 | ForEach-Object {[char]$_})
$mcpZapKey = -join ((48..57 + 65..90 + 97..122) | Get-Random -Count 48 | ForEach-Object {[char]$_})
Write-Host "ZAP_API_KEY=$zapKey"
Write-Host "MCP_ZAP_API_KEY=$mcpZapKey"
Linux/macOS shell:
echo "ZAP_API_KEY=$(openssl rand -hex 24)"
echo "MCP_ZAP_API_KEY=$(openssl rand -hex 24)"
Then copy those values into .env:
ZAP_API_KEY=<paste-generated-zap-key>
MCP_ZAP_API_KEY=<paste-generated-mcp-zap-key>
Optional (recommended) safer ZAP defaults in .env:
ZAP_SAFE_MODE=true
ZAP_ASCAN_THREAD_PER_HOST=2
ZAP_SPIDER_THREADS=2
ZAP_DISABLED_SCANNERS=40026
This reduces noisy/aggressive behavior (especially browser/DOM-XSS related scan noise). Set ZAP_SAFE_MODE=false to restore default ZAP behavior.
- Start base stack:
docker compose up -d --build
Recommended for Podman/LXC first:
chmod +x ./preflight.sh
./preflight.sh
Podman users:
podman compose up -d --build
Or use the bootstrap helper:
chmod +x ./preflight.sh
./preflight.sh
chmod +x ./bootstrap.sh
./bootstrap.sh
GPU diagnosis helper (ROCm/Ollama):
chmod +x ./gpu-diagnose.sh
./gpu-diagnose.sh
The script checks host device visibility, container device access, and Ollama log signals (GPU offload vs CPU fallback).
The bootstrap script runs preflight checks for /dev/net/tun, /dev/kfd, and /dev/dri before starting Podman Compose.
It also removes stale sec-mcp_* containers to avoid Podman name-collision errors on reruns.
- Open services:
- Open WebUI:
http://localhost:3000 - MCPO docs:
http://localhost:8000/docs - Ollama API:
http://localhost:11434
MCPO routes
Each MCP server is exposed by mcpo under its own path:
http://localhost:8000/triv3-kali-server/docshttp://localhost:8000/k3nn3dy-kali-mcp/docshttp://localhost:8000/metasploit-mcp/docshttp://localhost:8000/mcp-zap-server/docshttp://localhost:8000/nvd-cve-mcp-server/docshttp://localhost:8000/markdownify-mcp/docs
Open WebUI MCP setup
Follow the full guide in:
OPENWEBUI_MCP_SETUP.md
This includes:
- UI steps for adding OpenAPI servers
- Correct internal Docker URL usage (
http://mcpo:8000/...) - Auth header guidance for
MCPO_API_KEY - Validation and troubleshooting steps
- A first-success test flow (section 6) to quickly verify MCP tool calls end-to-end
Important compatibility note:
- Some Open WebUI versions ignore relative OpenAPI
serversvalues. - If tools return 404 on root routes (for example
/webpage-to-markdown,/fetch,/run,/command), set each imported server Base URL tohttp://mcpo:8000/<server-name>and re-save/re-import.
Notes
- First startup is slower because dependencies are built/installed.
kali-mcp-sseandtriv3-kali-apiinstall web audit binaries on startup (nikto,gobuster,sqlmap,dirb,seclists), so first boot can take several extra minutes.zapruns in a safer default profile whenZAP_SAFE_MODE=true.markdownify-mcpis built atmcpocontainer startup.mcp-zap-serverauth values are injected via.envintomcpo-config.template.jsonat runtime.MD_SHARE_DIRcontrols markdown file access scope formarkdownify-mcp.