MCPwner AI Pentesting Tool Finds Multiple 0-Day Vulnerabilities in OpenClaw

What MCPwner Is

MCPwner is an MCP (Model Context Protocol) server that enables AI agents to conduct automated penetration testing against security targets. The developer built it to orchestrate older AI models like GPT-4o and Claude 3.5 Sonnet, which when properly directed through MCPwner can find deep architectural flaws that standard scanning tools miss.

Recent OpenClaw Findings

When pointed at OpenClaw, MCPwner successfully identified multiple 0-day vulnerabilities that have now received official advisories. These weren't just minor bugs but critical security issues:

• Environment Variable Injection
• ACP permission auto-approval bypass
• File-existence oracle information disclosure
• safeBins stdin-only bypass

The tool found logic bypasses and injection points that traditional static analysis tools completely overlooked.

Technical Approach

MCPwner demonstrates that mid-tier and older AI models, when properly orchestrated through this MCP server, can outperform traditional static analysis for vulnerability discovery. The project has already identified multiple vulnerabilities and other CVEs beyond the OpenClaw findings.

Project Status and Contribution

The project is still in active development but already producing results. The developer is seeking contributors to help sharpen the scanning logic and expand the toolkit. Pull requests and feedback are welcome, particularly from those building in the offensive AI space who want to test the tool.

GitHub repository: https://github.com/Pigyon/MCPwner