#security

An MCP server that gives Claude and other AI agents the ability to audit any public URL's HTTP security headers. What it checks: - HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy - HTTPS enforcement and redirect chain depth - Presence of security.txt, robots.txt, sitemap.xml Payment model: - 0.05 USDC per scan, paid automatically on Base via the x402 protocol - No API key, no account, no subscription required - The agent's wallet pays directly — fully autonomous Tools provided: - scan_security_headers(url): Live scan (costs 0.05 USDC) - demo_security_snapshot(): Free pre-baked example

Real-time entity verification API for AI agents. Verify emails, URLs, and domains before your agent acts on them. Returns trust scores (0-1), verdicts (pass/warn/fail), and detailed signals. Free tier (50 calls/day) + instant metered access for agents with wallets ($0.003/call). The check before the action.

TACIT (Tracked Agent Capabilities In Types) is a safety harness for AI agents. Instead of calling tools directly, agents write code in Scala 3 with capture checking: a type system that statically tracks capabilities and enforces that agent code cannot forge access rights, cannot perform effects beyond its budget, and cannot leak information from pure sub-computations. It provides an MCP interface, so that it can be easily used by all MCP-compatible agents.

McpVanguard 🛡️ Titan-Grade AI Firewall for MCP Agents (v1.7.0) MCP (Model Context Protocol) enables AI agents to interact with host-level tools. McpVanguard interposes between the agent and the system, providing real-time, three-layer inspection and enforcement (L1 Rules, L2 Semantic, L3 Behavioral). Transparent integration. Zero-configuration requirements for existing servers. Tests PyPI version License: Apache 2.0 Python 3.11+ Part of the Provnai Open Research Initiative — Building the Immune System for AI. ⚡ Quickstart pip install mcp-vanguard Local stdio wrap (no network): vanguard start --server "npx @modelcontextprotocol/server-filesystem ." Cloud Security Gateway (SSE, deploy on Railway): export VANGUARD_API_KEY="your-secret-key" vanguard sse --server "npx @modelcontextprotocol/server-filesystem ." Deploy on Railway 📖 Full Railway Deployment Guide 🛡️ Getting Started (New Users) Bootstrap your security workspace with a single command: # 1. Initialize safe zones and .env template vanguard init # 2. (Optional) Protect your Claude Desktop servers vanguard configure-claude # 3. Launch the visual security dashboard vanguard ui --port 4040 🧠 How it works Every time an AI agent calls a tool (e.g. read_file, run_command), McpVanguard inspects the request across three layers before it reaches the underlying server: Layer What it checks Latency L1 — Safe Zones & Rules Kernel-level isolation (openat2 / Windows canonicalization) and 50+ deterministic signatures ~16ms L2 — Semantic LLM-based intent scoring via OpenAI, DeepSeek, Groq or Ollama Async L3 — Behavioral Shannon Entropy ($H(X)$) scouter and sliding-window anomaly detection Stateful Performance Note: The 16ms overhead is measured at peak concurrent load. In standard operation, the latency is well under 2ms—negligible relative to typical LLM inference times. If a request is blocked, the agent receives a standard JSON-RPC error response. The underlying server never sees it. Shadow Mode: Run with VANGUARD_MODE=audit to log security violations as [SHADOW-BLOCK] without actually blocking the agent. Perfect for assessing risk in existing production workflows. 🛡️ What gets blocked Sandbox Escapes: TOCTOU symlink attacks, Windows 8.3 shortnames (PROGRA~1), DOS device namespaces Data Exfiltration: High-entropy payloads (H > 7.5 cryptographic keys) and velocity-based secret scraping Filesystem attacks: Path traversal (../../etc/passwd), null bytes, restricted paths (~/.ssh), Unicode homograph evasion Command injection: Pipe-to-shell, reverse shells, command chaining via ; && \n, expansion bypasses SSRF & Metadata Protection: Blocks access to cloud metadata endpoints (AWS/GCP/Azure) and hex/octal encoded IPs. Jailbreak Detection: Actively identifies prompt injection patterns and instruction-ignore sequences. Continuous Monitoring: Visualize all of the above in real-time with the built-in Security Dashboard. 📊 Security Dashboard Launch the visual monitor to see your agent's activity and security status in real-time. vanguard ui --port 4040 The dashboard provides a low-latency, HTMX-powered feed of: Real-time Blocks: Instantly see which rule or layer triggered a rejection. Entropy Scores: Pulse-check the H ( X ) levels of your agent's data streams. Audit History: Contextual log fragments for rapid incident response. VEX Protocol — Deterministic Audit Log When McpVanguard blocks an attack, it creates an OPA/Cerbos-compatible Secure Tool Manifest detailing the Principal, Action, Resource, and environmental snapshot. This manifest is then sent as a cryptographically-signed report to the VEX Protocol. VEX anchors that report to the Bitcoin blockchain via the CHORA Gate. This means an auditor can independently verify exactly what was blocked, the entropy score, and why — without relying on your local logs. export VANGUARD_VEX_URL="https://api.vexprotocol.com" export VANGUARD_VEX_KEY="your-agent-jwt" export VANGUARD_AUDIT_FORMAT="json" # Optional: Route JSON logs directly into SIEM (ELK, Splunk) vanguard sse --server "..." --behavioral Architecture ┌─────────────────────────────────────────────────┐ AI Agent │ McpVanguard Proxy │ (Claude, GPT) │ │ │ │ ┌───────────────────────────────────────────┐ │ │ JSON-RPC │ │ L1 — Rules Engine │ │ │──────────────▶│ │ 50+ YAML signatures (path, cmd, net...) │ │ │ (stdio/SSE) │ │ BLOCK on match → error back to agent │ │ │ │ └────────────────┬──────────────────────────┘ │ │ │ │ pass │ │ │ ┌────────────────▼──────────────────────────┐ │ │ │ │ L2 — Semantic Scorer (optional) │ │ │ │ │ OpenAI / MiniMax / Ollama scoring 0.0→1.0│ │ │ │ │ Async — never blocks the proxy loop │ │ │ │ └────────────────┬──────────────────────────┘ │ │ │ │ pass │ │ │ ┌────────────────▼──────────────────────────┐ │ │ │ │ L3 — Behavioral Analysis (optional) │ │ │ │ │ Sliding window: scraping, enumeration │ │ │ │ │ In-memory or Redis (multi-instance) │ │ │ │ └────────────────┬──────────────────────────┘ │ │ │ │ │ │◀── BLOCK ─────│───────────────────┤ (any layer) │ │ (JSON-RPC │ │ ALLOW │ │ error) │ ▼ │ │ │ MCP Server Process │ │ │ (filesystem, shell, APIs...) │ │ └──────────────────┬──────────────────────────────┘ │ │ │◀─────────────── response ────────┘ │ │ (on BLOCK) └──────────────▶ VEX API ──▶ CHORA Gate ──▶ Bitcoin Anchor (async, fire-and-forget audit receipt) L2 Semantic Backend Options The Layer 2 semantic scorer supports a Universal Provider Architecture. Set the corresponding API keys to activate a backend — the first available key wins (priority: Custom > OpenAI > MiniMax > Ollama): Backend Env Vars Notes Universal Custom (DeepSeek, Groq, Mistral, vLLM) VANGUARD_SEMANTIC_CUSTOM_KEY, VANGUARD_SEMANTIC_CUSTOM_MODEL, VANGUARD_SEMANTIC_CUSTOM_URL Fast, cheap inference. Examples: Groq: https://api.groq.com/openai/v1 DeepSeek: https://api.deepseek.com/v1 OpenAI VANGUARD_OPENAI_API_KEY, VANGUARD_OPENAI_MODEL Default model: gpt-4o-mini MiniMax VANGUARD_MINIMAX_API_KEY, VANGUARD_MINIMAX_MODEL, VANGUARD_MINIMAX_BASE_URL Default model: MiniMax-M2.5 Ollama (local) VANGUARD_OLLAMA_URL, VANGUARD_OLLAMA_MODEL Default model: phi4-mini. No API key required # Example: Use Groq for ultra-fast L2 scoring export VANGUARD_SEMANTIC_ENABLED=true export VANGUARD_SEMANTIC_CUSTOM_KEY="your-groq-key" export VANGUARD_SEMANTIC_CUSTOM_MODEL="llama3-8b-8192" export VANGUARD_SEMANTIC_CUSTOM_URL="https://api.groq.com/openai/v1" vanguard start --server "npx @modelcontextprotocol/server-filesystem ."

Younanix Memory MCP gives autonomous AI agents access to real-world engineering memory from actual incidents (Slack threads + GitHub issues in Supabase, TRPC, Drizzle, Rails, Node.js etc).Natural language tool: query_lessons (search for problems, root causes, solutions) Structured output: {problem, root_cause, lesson_learned, confidence (80-100%), category, tags} Free preview: 3 queries/hour (degraded results) Full access: $0.10 per query via x402/USDC micropayments (permissionless, no API keys needed) 470+ lessons live, auto-growing from public repos Connect once in Cursor/Claude Desktop/Windsurf → your agent auto-queries high-confidence fixes without hallucinations. Perfect for debugging, performance, security, reliability in real stacks. Site: https://www.younanix.com Let's make agents smarter with battle-tested knowledge! #AIAgents, #MCP ,#Debugging

A Python MCP Server that connects Large Language Models natively to a comprehensive suite of offensive security tools.

Security scanner for AI Agent skills, plugins, and MCP servers. 39+ detection rules with AST taint tracking, A-F grading, and post-uninstall residue cleanup.

MCPwner is a Model Context Protocol (MCP) server that integrates security testing tools into LLM-driven workflows. It provides a unified interface for secret scanning, static analysis (SAST), software composition analysis (SCA), and vulnerability research including 0-day discovery. Instead of manually chaining tools and pasting outputs into your LLM, MCPwner standardizes and streams results directly into the model's working context. This enables continuous reasoning, correlation, and attack path discovery across the entire security research lifecycle - from identifying known vulnerabilities to uncovering novel attack vectors.

Secrets vault for Claude Code. Encrypt API keys, tokens and passwords with AES-256. Full audit logs, MCP access rules, and zero-knowledge mode. Secrets never appear in chat.

Security-first MCP gateway for Odoo 17/18/19 — 27 tools, YAML-driven security

Cryptographic runtime governance for AI agents. 20 tools. Sealed policy artifacts, continuous measurement, tamper-evident proof. Ed25519 + SHA-256.

Data Sentinel — deep second-pass security scan that catches what PII scrubbers miss. Detects JWTs, bearer tokens, AWS keys, private keys, connection strings, IBANs, crypto wallets, medical record numbers, internal IPs, and base64 blobs. Returns masked matches with confidence levels. GDPR and AI TRiSM aligned. $0.003/req via x402 on Base.

Permission Guard — validates an agent's requested action against its defined scope before execution. Detects out-of-scope access, privilege escalation, and flags dangerous operations like delete, execute, admin, and deploy even when technically permitted. Stops agents from doing more than they're supposed to. $0.002/req via x402 on Base.

Security layer for AI agents — MCP Hub with DLP, cross-agent Memory Vault, and 8.6M coding pattern database. Bidirectional content security scans outbound data for PII, secrets (50+ credential types), and high-entropy strings while blocking prompt injection inbound. Memory Vault enables persistent context across Claude, Gemini, Cursor, and Copilot with personal and team-level vaults. Pattern Database provides validated bug-fix patterns from 6,219 OSS projects across 48 languages, queryable by agents before writing code. Single endpoint proxying with built-in auth, health checks, and circuit breaking. Free tier available.

TurboPentest is an agentic AI penetration testing platform built by IntegSec that makes professional-grade security assessments accessible to every organization. Instead of waiting weeks for a manual pentest engagement or relying on a single scanning tool, TurboPentest deploys up to 20 autonomous AI agents that orchestrate 15 professional security tools - including Nmap, OWASP ZAP, Nuclei, Nikto2, OpenVAS, TestSSL, Subfinder, HTTPX, FFUF, Wafw00f, Gitleaks, Semgrep, Trivy, IntegSec PentestTools, and Paladin AI - in a single automated workflow. At the core is Paladin AI, an autonomous pentesting agent powered by Claude Sonnet 4.6. While Phase 1 tools gather reconnaissance data, Paladin is where the actual penetration test happens - specialist AI agents validate exploits, discover multi-step attack chains, generate proof-of-concept demonstrations, and assess business impact. This is what makes TurboPentest an agentic pentest rather than just a scanner with AI features. The result is a comprehensive security assessment that covers the OWASP Top 10, network-level vulnerabilities, TLS/SSL misconfigurations, exposed secrets, hidden endpoints, subdomain enumeration, and more. Every scan generates five professional deliverables: a detailed PDF report with severity-ranked findings and remediation guidance, a blockchain-anchored security attestation letter (Base L2) suitable for auditors, customers, and compliance frameworks like SOC 2 and ISO 27001, an attack surface map visualizing your external exposure, a STRIDE-based threat model outlining risk scenarios with prioritized manual testing recommendations, and retest commands (Docker-based) to verify remediation. Scans support both black box (external-only) and white box (with GitHub integration for source-level analysis via Gitleaks, Semgrep SAST, and Trivy SCA) modes. TurboPentest integrates directly into CI/CD pipelines through its GitHub Action, enabling security testing on every pull request or deployment. Results are typically delivered in up to 4 hours. Pricing starts at $49 per scan (Recon tier). Four tiers are available: Recon ($49, 1 agent, 30 min), Standard ($99, 4 agents, 1 hour), Deep ($299, 10 agents, 2 hours), and Blitz ($699, 20 agents, 4 hours). Volume discounts of 10-30% are available for 10+ scans, and subscription plans offer additional savings. TurboPentest is hosted on Microsoft Azure. Reports are built to meet the documentation requirements of SOC 2, ISO 27001, PCI DSS, HIPAA, and CMMC. For more information, visit https://turbopentest.com or contact support@integsec.com.

Agent-native data and skills marketplace. Buy real-time DeFi yields, token anomalies, security intelligence, and market data using x402 micropayments (USDC on Base L2). Includes SKILL.md behavioral protocols and MCP tool integrations. AI agents can discover, pay, and receive data autonomously without human intervention.

Security awareness for AI agents — so your agent knows what's dangerous before it acts. Powered by CVE, NVD, CISA KEV, and OSV.dev vulnerability data with 196 credential detection rules, returning allow/warn/block decisions in real time. Stop your agent from running vulnerable dependencies, leaking secrets, or accidentally deleting your filesystem.

Reinforcement for AI-generated code. Enforcement hooks, quality audits, and compliance packs that prevent AI coding tools from shipping broken code.

Live threat intelligence for Claude — check IPs, CVEs, KEV predictions, malware hashes, and pre-attack staging detection. Free, no API key required. Data updates every 15 minutes.

Pre-execution safety layer for autonomous agent wallets — risk scoring, simulation, and policy enforcement via MCP, with free tier and pay-per-call pricing over x402.

Dead code detection, security scanning, and code quality analysis for Python, TypeScript, and Go. 98% recall with 3x fewer false positives than Vulture. 5 tools: analyze, security_scan, quality_check, secrets_scan, remediate. AI-powered auto-fix agent.

Full-featured MCP server for Apache Superset with 135+ tools for dashboards, charts, datasets, SQL Lab, security, and more

Free AI security & productivity tools — prompt injection tester, PII redactor, code sanitizer, context budget planner, model picker, and more. 6 tools available via MCP, all stateless and no auth required.

Detect live website vulnerabilities and security flaws in GitHub repositories using automated DAST and SAST scanning. Safeguard applications by identifying exposed secrets, insecure dependencies, and common code patterns prone to exploitation. Receive structured fix plans with precise code remediation steps to resolve identified risks and improve security posture.

Wireshark/tshark MCP server — capture live network traffic, analyze .pcap files, apply display filters, follow TCP/UDP streams, and export to JSON. Works with Claude Desktop, VS Code Copilot, and any MCP-compatible client.

15 anti-Orwellian defense tools for AI agents. Analyze doublespeak, track surveillance funding, assess whistleblower risks, verify media provenance, search threat registries, map country risk, and more. Fully open, no API key required. CC-BY-4.0.

Cryptographic identity and trust protocol for AI agents. 38 MCP tools across 8 protocol layers: Ed25519 identity, delegation chains with cascade revocation, values compliance, signed communication (Agent Agora), 3-signature policy engine, task coordination, cross-layer integration, and agentic commerce with 4-gate checkout. 264 tests passing. Published on the Official MCP Registry.

AI-native security tools via MCP. Prompt injection detection (208 patterns, 8 languages, <100ms), skill supply chain scanning (204 patterns, 8 risk categories), plus URL/domain/IP/email/password checks. Pay-per-request with USDC via x402 — no API keys needed. 9 tools, demo mode included.

12 web analysis tools for AI agents with x402 micropayments. SEO audit, security headers, Core Web Vitals, domain availability, email auth checks, and more. Pay per call with USDC on Base — no API keys, no accounts.

MCP server that scans Next.js projects and returns a compact summary of routes, API endpoints, database schema, and security issues.

Solana token safety scanner. Risk score 0-100 from pure on-chain analysis — mint/freeze authority, holder concentration, liquidity, LP locks, honeypot detection, Token-2022 extensions. Free lite check or $0.008 USDC full report via x402.

eip-mcp connects AI assistants to the Exploit Intelligence Platform via the Model Context Protocol. 17 tools to search vulnerabilities, analyze exploits, audit tech stacks, and generate pentest findings — with real-time data from NVD, CISA KEV, VulnCheck KEV, InTheWild.io, ENISA EUVD, EPSS, ransomware attribution, ExploitDB, Metasploit, GitHub, and more.

Governance middleware for AI agents: deterministic policy enforcement, cryptographic audit trails with digital signatures, DLP/PII detection, Trust Score per agent (0-100), EU AI Act compliance (Art. 9, 11, 12, 14), Agent BOM generation, and Circuit Breaker. Native support for LangGraph, CrewAI, and AutoGen.

Governance and audit layer for MCP tool calls. TrustLoop intercepts every AI agent action, logs it to a tamper-evident audit trail, blocks unsafe tools via kill-switch, and anchors proof to the blockchain. Drop it into any MCP setup in minutes, no code changes required.

Give your AI assistant a packet analyzer. Drop a .pcap file, ask questions in plain English — get answers backed by real tshark data.

A remote MCP server deployed on Railway that exposes all 14 Softricks iDig tools to any MCP-compatible AI client. One config entry and your AI assistant has professional DNS diagnostics available in every conversation → https://mcp.softricks.net/sse Add that to Claude Desktop or Cursor, restart, and you can ask things like: "My emails are going to spam for example.com — what's wrong?" "Did my DNS changes propagate yet?" "Is our SSL cert about to expire?" "Run a full security audit on this domain." And your AI will call live DNS infrastructure to answer.

Deterministic MCP server that scores code risk BEFORE execution. Returns ALLOW or BLOCK with full reasoning. Same inputs → same output. Always.

The only MCP server that gates skill installation behind a full security scan. 60+ threat patterns, 13 MCP tools, and support for 7 clients including Claude Code, Cursor, Windsurf, and GitHub Copilot. Features AI-powered search, cloud sync, and startup verification with SHA-256 content hashing.

MCP server for https://oathe.ai security audits. Runtime behavioral analysis and security scanner for AI systems. Check trust scores before installing MCP servers, plugins, or AI agent skills.

MCP server providing x402 micropayment-powered developer tools. Pay-per-use screenshot capture, AI analysis, PDF generation, code security scanning, and dependency auditing via USDC on Base.

MCP server that enables LLMs to interact with the VirusTotal API for malware analysis, URL scanning, and threat intelligence.

TEOS MCP is an MCP server that performs real-time diff-level security scanning for AI agents and CI/CD pipelines. It analyzes code diffs before merge or deployment and returns a deterministic gate decision: ALLOW WARN BLOCK Built for: • AI agents • Autonomous systems • DevSecOps teams • CI/CD workflows Features: • Diff risk scoring • Deterministic merge gate • Real-time enforcement • Usage-based monetization (pay-per-scan) • Optional on-chain verification Unlike gateway filters, TEOS MCP performs code-level intelligence before execution.

DNS, IP, AS, domain reputation, and Lightning Network intelligence. 44 tools for DNS lookups, reverse DNS, passive DNS, IP reputation, threat intelligence, AS/BGP routing, domain rankings, MAC address lookups, and Bitcoin Lightning Network data. No authentication required.

36 enterprise-grade MCP tools for AWS infrastructure, security compliance, AI workflows, agent governance, and operational resilience. Includes IAM policy validation with security scoring, MFA compliance auditing, CloudFormation/SAM template generation, DynamoDB single-table design, OAuth configuration validation, vector embedding generation via Amazon Bedrock, error pattern analysis, data lake readiness assessment, risk classification, task routing, 12 ACI governance tools for AI agent safety (decision classification, financial gates, compliance checks, blast radius estimation, rollback generation), and 4 local stakeholder interview tools that require no API key.

Deterministic quality gates for AI coding agents. Rigour runs 23 automated checks on every file AI writes — structural analysis, security scanning, AI-drift detection, and agent governance. Works as an MCP server for Claude Desktop, Cursor, and Cline. Supports TypeScript, JavaScript, Python, Go, Ruby, and C#. Forces AI agents to write production-grade code with PASS/FAIL enforcement.

Security scanner for MCP servers and AI-generated code. Detects leaked API keys, PII, prompt injection, and MCP misconfigs. Gives A-F security grades with fix-it guides. One command: npx project-shield scan .

Deterministic authorization for AI agent spending — budget checks, spend authorization with Ed25519 cryptographic seals, and audit logs.

Security scanner for AI agent skills. Detects credential theft, data exfiltration, prompt injection, reverse shells, dangerous capability combos, and hardcoded secrets. 14 rules, 80+ patterns, 22 secret detectors. Free API + CLI (npx skillaudit). Built by an AI agent.

SafeDep MCP Server protects AI coding agents from supply chain attacks by checking every open source package before installation. When your AI suggests a package, SafeDep validates it against our threat intelligence database, built from continuous scanning, behavioral analysis, and human security researcher verification. Malicious packages are blocked instantly. Safe packages install without friction. We detect threats in hours, not the 24-48 hours it takes for public disclosure. Same intelligence that caught Shai-Hulud and S1ngularity.

Sandboxed Python execution for AI agents. Scripts run in ephemeral, isolated environments (bubblewrap on Linux, Docker on macOS) with PEP 723 inline dependencies — zero host pollution, zero leftover venvs, zero package conflicts. Supports multi-version Python (3.13–3.15), configurable timeouts, and output truncation.

A comprehensive domain intelligence MCP server with 50+ tools for domain research, DNS analysis, and web infrastructure inspection. Features include domain availability checking across multiple TLDs, WHOIS/RDAP lookups, DNS record analysis and propagation checks, SSL/TLS certificate grading and chain inspection, email security auditing (SPF, DKIM, DMARC), domain reputation scoring, market valuation, tech stack detection, hosting and CDN identification, typosquatting protection, subdomain enumeration via Certificate Transparency logs, IP geolocation, reverse DNS lookups, and more. Connects as a remote MCP server via SSE at https://domscan.net/mcp — no API key required.

Security scanner MCP server that protects AI coding agents from generating vulnerable code. Uses tree-sitter AST analysis to detect OWASP Top 10 vulnerabilities, hardcoded secrets, and prompt injection attacks. Includes package hallucination detection across 4.3M packages (npm, PyPI, RubyGems, crates.io, pub.dev, CPAN, Raku). Works with Claude Desktop, Claude Code, Cursor, Cline, and any MCP-compatible client. Full feature list (for detailed descriptions): • 275+ security rules covering Python, JavaScript, TypeScript, Java, Go, Ruby, PHP, C/C++, Rust, C#, Terraform, Kubernetes • AST-based detection with tree-sitter (falls back to regex when unavailable) • Taint analysis for tracking user input to dangerous sinks • Package hallucination detection: verifies 4.3M+ packages across 7 ecosystems • Prompt injection detection: blocks exfiltration, jailbreaks, and malicious instructions • Automatic fix suggestions for common vulnerabilities • Zero config: works instantly with npx • CWE/OWASP metadata for compliance reporting

Security scanner for developers and startups. Vigil performs deep security audits of your system and generates cryptographically signed, tamper-evident reports. It integrates seamlessly with AI assistants like Claude Desktop and Cursor through the Model Context Protocol.

CouchLoop EQ is an MCP (Model Context Protocol) server that provides behavioral governance for LLMs. It monitors AI responses for hallucination, inconsistency, tone drift, and unsafe reasoning patterns, while also managing stateful sessions and guided journeys that remember where you left off.

Content moderation and profanity detection MCP server with 19 tools, 24 language support, leetspeak/Unicode obfuscation detection, context-aware analysis, batch processing, and user tracking for AI-powered content safety.

Store and retrieve API keys and secrets locally for Claude Code. No cloud services, no .env files scattered across projects. Secrets are stored in a SQLite database on your machine and accessed via MCP tools. Supports add, get, list, search, update, and delete operations with category organization.

Preloop is the MCP Governance Layer. Add approval gates to AI tool calls. Intercept risky actions, collect human decisions, and keep an audit trail.

High-performance MCP server for USPTO Patent File Wrapper API with secure document downloads, metadata access, and context reduction

High-performance MCP server for USPTO Patent Trial and Appeal Board (PTAB) with context reduction, progressive disclosure workflows, and seamless cross-MCP integration

Code Pathfinder's MCP Server provides AI coding assistants like Claude Code with deep semantic understanding of codebases through call graph analysis, symbol search, and dependency tracking. It enables developers to ask natural language questions like "who calls this function?" instead of manually using grep or searching code. The tool runs 100% locally (your code never leaves your machine), is free and open-source under AGPL-3.0, and installs in under 5 minutes. [codepathfinder](https://codepathfinder.dev/mcp)

A production-ready MCP server that gives AI agents deep codebase understanding. Features AST-based semantic analysis, context-aware security scanning (zero false positives on source code), safe refactoring tools with previews, and comprehensive Git operations.

Open Source AI Code Review

Kodus MCP HTTP server exposing OSV (v1) for open source vulnerability lookup via osv_query/osv_query_batch tools.

DMARC MCP Server is a Model Context Protocol server that exposes DNS and email authentication data as structured, read only tools for developers and AI agents. It enables direct inspection and validation of DMARC, SPF, and DKIM records, including RFC compliant SPF analysis, lookup limit checks, and configuration diagnostics. The server integrates with MCP compatible tools like Cursor, VS Code, and Claude Code, making email authentication part of modern development and automation workflows.

Read-only MCP server for secure filesystem exploration, searching, and analysis

Access your team's 2FA codes from AI agents without sharing secrets. List accounts, generate TOTP codes, and maintain full audit trails. Built for DevOps, CI/CD pipelines, and automated workflows that need to authenticate to protected services.

Provides a bridge for scripts and AI agents to interact with a self-hosted Vaultwarden instance.

An MCP server for Fleet device management

MCP server for Terraform — automatically validates, secures, and estimates cloud costs for Terraform configurations. The Binadox solution integrates with any Model Context Protocol (MCP) client (e.g. Claude Desktop or other MCP-compatible AI assistants).

Coding agents accelerate software delivery by autonomously suggesting or adding code and dependencies. However, without the right safeguards, they can introduce significant supply chain risks by pulling in third-party packages that: - Contain known critical vulnerabilities - Are end-of-life and no longer supported - Contain malware - Mimic legitimate libraries through typosquatting BoostSecurity MCP acts as a safeguard. It analyzes every package an AI agent introduces, flags unsafe dependencies, and recommends secure, maintained alternatives to keep projects protected.

Zenable cleans up sloppy AI code, prevents vulnerabilities, and automates governance with deterministic guardrails so developers can ship faster, safer, and with confidence. Use Cases: 1. AI coding assistants generate vulnerable code with security flaws and compliance violations. Zenable acts as a real-time safety net that catches SQL injections, hardcoded secrets, and policy violations as code is written - ensuring you ship AI-accelerated code with confidence and zero security compromises. 2. Rapid AI-driven development introduces inconsistent patterns and technical debt. Zenable provides automated governance checks that ensure every AI-generated feature meets your standards, enabling 10x development speed without sacrificing code quality. 3. Bugs slip through reviews and automated testing misses edge cases. Zenable provides AI-powered analysis that identifies subtle bugs and suggests fixes before production, resulting in fewer production incidents.

NetForensicMCP V2.1 is a Model Context Protocol (MCP) server designed to empower Large Language Models (LLMs) with advanced offline network traffic analysis and threat intelligence capabilities. Built on top of Wireshark's tshark, NetForensicMCP provides comprehensive PCAP analysis tools for cybersecurity professionals, threat hunters, and network forensics investigators.

Quake MCP Server

Unofficial VirusTotal MCP Server

NetForensicMCP V2.1 is a Model Context Protocol (MCP) server designed to empower Large Language Models (LLMs) with advanced offline network traffic analysis and threat intelligence capabilities. Built on top of Wireshark's tshark, NetForensicMCP provides comprehensive PCAP analysis tools for cybersecurity professionals, threat hunters, and network forensics investigators.

Complete GitLab MCP integration with 72 specialized tools for comprehensive DevOps management

A diagnostic MCP server for probing and validating client connections.

Connects AI agents with the CrowdStrike Falcon platform for intelligent security analysis, providing programmatic access to detections, incidents, behaviors, threat intelligence, hosts, vulnerabilities, and identity protection capabilities.

Connect real-time cybersecurity threat intelligence to your AI workflows through standardized tools and resources. Access comprehensive IOCs, CVEs, TTPs, and threat actor data from FalconFeeds.io with seamless integration across Claude Desktop, VS Code, and other MCP-enabled applications.

Production-ready MCP Server for AI agents with cryptocurrency payments, blockchain data, and market analysis capabilities. Supports USDT payments (TRC20/ERC20), real-time price data, and enterprise-grade security.

Kaspersky OpenTIP Model Context Protocol Server This server gives access to Kaspersky OpenTIP API to agentic applications.

Kaspersky OpenTIP Model Context Protocol Server This server gives access to Kaspersky OpenTIP API to agentic applications.

Why MCPProxy? - Scale beyond API limits – Federate hundreds of MCP servers while bypassing Cursor's 40-tool limit and OpenAI's 128-function cap. - Advanced security protection – Automatic quarantine blocks Tool Poisoning Attacks until you manually approve new servers. Docs - https://mcpproxy.app

Scan and analyze potentially malicious URLs using the urlDNA

缔零法则MCP是专为审核安全领域打造的AI智能防御中枢，致力于通过Agentic AI 技术减少人力成本，高效高精度为用户提供分钟级接入的内容风控解决方案，破解安全威胁，提供从风险感知到主动拦截策略执行的全链路闭环与一体化解决方案。 核心特点 使用简单接入便捷：无需部署本地服务，通过简单配置即可使用； 运维成本较低：用户无需关心服务器维护、资源扩容等底层运维问题。 协议兼容：多模态支持，适配不同客户不同业务不同内容审核场景的技术接入需求。 易集成：标准 MCP 协议，主流 AI/Agent/workflow 皆可用 三、核心功能矩阵 1、全风险域覆盖 一次性识别所有内容风险类型，无需多系统切换。最高支持30种风险域，支持 350+细分标签，一次调用完成全域扫描，无需重复对接不同审核接口 2、极速响应能力 将审核效率提升至人工的 50倍，平均审核时间20秒；规则变动时 30分钟完成策略调整；新风险场景 5天快速接入适配 3、智能识别引擎 通过深度语义分析应对复杂风险场景，通过上下文关联重建，解析识别变体表达和隐藏含义；同时通过动态策略优化，根据实时风险数据自动调整审核阈值，自动学习新型违规模式。 4、多模态融合审查 可统一处理文本、图像内容。通过图文混合审核既即可实现AIGC内容专项治理，拦截违规生图提示词及输出。 5、企业级风险管理工具 客户可无培训成本直接使用；同时具备策略配置中心，以自然语言定义规则为基础设置分级审核机制，精准审核

Core Features for Security Infrastructure MCP Servers: * Real-time Security Data Integration - Unified access to Splunk SIEM events, CrowdStrike endpoint detections, and MISP threat intelligence through natural language queries via MCP protocol. * Multi-Platform Query Engine - Execute SPL searches across Splunk indexes, FQL-based detection filtering in CrowdStrike Falcon, and IOC attribute searches in MISP instances with consistent JSON responses. * Automated Threat Correlation - Cross-reference security events between platforms using AI-driven analysis to identify related indicators, detections, and threat intelligence in real-time. * Secure Authentication Framework - Support for multiple authentication methods including OAuth 2.0 (CrowdStrike), API tokens (Splunk), and key-based access (MISP) with automatic session management. * Asynchronous Security Operations - Non-blocking search job management for large-scale security data queries with configurable time ranges and result pagination. * Enterprise Security Workflow - Streamline SOC analyst workflows by enabling natural language security investigations across multiple security platforms through a single MCP interface. This implementation enables security teams to leverage AI assistants for comprehensive threat hunting, incident response, and security analysis across their entire security infrastructure stack.

These tools are used to query sample-related information within the foundational network data set. Currently, this includes access to sandbox analysis data.

These tools are used to query IP-related information within the foundational network data set. Currently, this includes IP geolocation lookup.

These tools are used to query domain-related data within the broader scope of foundational network security data. This includes co-occurring domains, domain popularity rankings, webpage content, and domain intelligence from the Libra data platform.

Core network security data includes PassiveDNS resolution records, domain and IP registration details, website certificate information, and IOC (Indicators of Compromise) database queries.

Zerotrusted Ai Privacy Agent

Detects PII entities in the given prompt.

网络基础数据，包括passivedns解析数据、域名和IP的注册信息、网站证书、IOC库的查询。

网络基础数据，包括passivedns解析数据、域名和IP的注册信息、网站证书、IOC库的查询。

A reference implementation of the SchemaPin protocol for cryptographically signing and verifying AI agent tool schemas to prevent supply-chain attacks.

AlienVault/USM Anywhere MCP Server - Threat intelligence and security monitoring

SafeMCP is an MCP tooling manager with simplicity and safety built in for your AI tools and Agents.

Desktop app that automatically scans and blocks malicious MCP traffic in AI apps like Cursor, Claude, VS Code and Windsurf.

MCP server for CIRCL CVE Search API with intelligent risk assessment and comprehensive vulnerability analysis.

MCP Sandbox transforms JavaScript modules into secure MCP servers, enabling AI systems to access functions safely. With automatic reflection and type inference, it simplifies the integration process for developers. 🛠️💻

Conversational cloud security compliance auditing. MCP server enabling natural language queries about AWS security posture via Claude and other AI assistants.

A Model Context Protocol (MCP) server that generates random passwords with different character sets.

AgentNull: AI System Security Threat Catalog + Proof-of-Concepts. Collection of PoCs for using Agents, MCP, and RAG in bad ways.

A PII detection Agent which helps you detect PII entities in a given prompt.

The Trend Vision One Model Context Protocol (MCP) Server enables natural language interaction between your favourite AI tooling and the Trend Vision One web APIs. This allows users to harness the power of Large Language Models (LLM) to interpret and respond to security events.

Mirror of

A comprehensive Model Context Protocol (MCP) server for web security reconnaissance and analysis.

This open-source curriculum is designed to teach the concepts and fundamentals of the Model Context Protocol (MCP), with practical examples in .NET, Java, TypeScript, JavaScript and Python.

The SonarQube MCP Server is a Model Context Protocol (MCP) server that enables seamless integration with SonarQube Server or Cloud for code quality and security. It also supports the analysis of code snippet directly within the agent context.

A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP implementations.

Node.js MCP server for UpGuard CyberRisk API integration. Provides comprehensive cybersecurity risk assessment tools with stateless HTTP transport, caching, and resilience patterns.

MCP Server for Panther