#security

Read-only MCP server for secure filesystem exploration, searching, and analysis

Access your team's 2FA codes from AI agents without sharing secrets. List accounts, generate TOTP codes, and maintain full audit trails. Built for DevOps, CI/CD pipelines, and automated workflows that need to authenticate to protected services.

Provides a bridge for scripts and AI agents to interact with a self-hosted Vaultwarden instance.

An MCP server for Fleet device management

MCP server for Terraform — automatically validates, secures, and estimates cloud costs for Terraform configurations. The Binadox solution integrates with any Model Context Protocol (MCP) client (e.g. Claude Desktop or other MCP-compatible AI assistants).

Coding agents accelerate software delivery by autonomously suggesting or adding code and dependencies. However, without the right safeguards, they can introduce significant supply chain risks by pulling in third-party packages that: - Contain known critical vulnerabilities - Are end-of-life and no longer supported - Contain malware - Mimic legitimate libraries through typosquatting BoostSecurity MCP acts as a safeguard. It analyzes every package an AI agent introduces, flags unsafe dependencies, and recommends secure, maintained alternatives to keep projects protected.

Zenable cleans up sloppy AI code, prevents vulnerabilities, and automates governance with deterministic guardrails so developers can ship faster, safer, and with confidence. Use Cases: 1. AI coding assistants generate vulnerable code with security flaws and compliance violations. Zenable acts as a real-time safety net that catches SQL injections, hardcoded secrets, and policy violations as code is written - ensuring you ship AI-accelerated code with confidence and zero security compromises. 2. Rapid AI-driven development introduces inconsistent patterns and technical debt. Zenable provides automated governance checks that ensure every AI-generated feature meets your standards, enabling 10x development speed without sacrificing code quality. 3. Bugs slip through reviews and automated testing misses edge cases. Zenable provides AI-powered analysis that identifies subtle bugs and suggests fixes before production, resulting in fewer production incidents.

NetForensicMCP V2.1 is a Model Context Protocol (MCP) server designed to empower Large Language Models (LLMs) with advanced offline network traffic analysis and threat intelligence capabilities. Built on top of Wireshark's tshark, NetForensicMCP provides comprehensive PCAP analysis tools for cybersecurity professionals, threat hunters, and network forensics investigators.

Quake MCP Server

Unofficial VirusTotal MCP Server

NetForensicMCP V2.1 is a Model Context Protocol (MCP) server designed to empower Large Language Models (LLMs) with advanced offline network traffic analysis and threat intelligence capabilities. Built on top of Wireshark's tshark, NetForensicMCP provides comprehensive PCAP analysis tools for cybersecurity professionals, threat hunters, and network forensics investigators.

Complete GitLab MCP integration with 72 specialized tools for comprehensive DevOps management

A diagnostic MCP server for probing and validating client connections.

Connects AI agents with the CrowdStrike Falcon platform for intelligent security analysis, providing programmatic access to detections, incidents, behaviors, threat intelligence, hosts, vulnerabilities, and identity protection capabilities.

Connect real-time cybersecurity threat intelligence to your AI workflows through standardized tools and resources. Access comprehensive IOCs, CVEs, TTPs, and threat actor data from FalconFeeds.io with seamless integration across Claude Desktop, VS Code, and other MCP-enabled applications.

Production-ready MCP Server for AI agents with cryptocurrency payments, blockchain data, and market analysis capabilities. Supports USDT payments (TRC20/ERC20), real-time price data, and enterprise-grade security.

Kaspersky OpenTIP Model Context Protocol Server This server gives access to Kaspersky OpenTIP API to agentic applications.

Kaspersky OpenTIP Model Context Protocol Server This server gives access to Kaspersky OpenTIP API to agentic applications.

Why MCPProxy? - Scale beyond API limits – Federate hundreds of MCP servers while bypassing Cursor's 40-tool limit and OpenAI's 128-function cap. - Advanced security protection – Automatic quarantine blocks Tool Poisoning Attacks until you manually approve new servers. Docs - https://mcpproxy.app

Scan and analyze potentially malicious URLs using the urlDNA

缔零法则MCP是专为审核安全领域打造的AI智能防御中枢，致力于通过Agentic AI 技术减少人力成本，高效高精度为用户提供分钟级接入的内容风控解决方案，破解安全威胁，提供从风险感知到主动拦截策略执行的全链路闭环与一体化解决方案。 核心特点 使用简单接入便捷：无需部署本地服务，通过简单配置即可使用； 运维成本较低：用户无需关心服务器维护、资源扩容等底层运维问题。 协议兼容：多模态支持，适配不同客户不同业务不同内容审核场景的技术接入需求。 易集成：标准 MCP 协议，主流 AI/Agent/workflow 皆可用 三、核心功能矩阵 1、全风险域覆盖 一次性识别所有内容风险类型，无需多系统切换。最高支持30种风险域，支持 350+细分标签，一次调用完成全域扫描，无需重复对接不同审核接口 2、极速响应能力 将审核效率提升至人工的 50倍，平均审核时间20秒；规则变动时 30分钟完成策略调整；新风险场景 5天快速接入适配 3、智能识别引擎 通过深度语义分析应对复杂风险场景，通过上下文关联重建，解析识别变体表达和隐藏含义；同时通过动态策略优化，根据实时风险数据自动调整审核阈值，自动学习新型违规模式。 4、多模态融合审查 可统一处理文本、图像内容。通过图文混合审核既即可实现AIGC内容专项治理，拦截违规生图提示词及输出。 5、企业级风险管理工具 客户可无培训成本直接使用；同时具备策略配置中心，以自然语言定义规则为基础设置分级审核机制，精准审核

Core Features for Security Infrastructure MCP Servers: * Real-time Security Data Integration - Unified access to Splunk SIEM events, CrowdStrike endpoint detections, and MISP threat intelligence through natural language queries via MCP protocol. * Multi-Platform Query Engine - Execute SPL searches across Splunk indexes, FQL-based detection filtering in CrowdStrike Falcon, and IOC attribute searches in MISP instances with consistent JSON responses. * Automated Threat Correlation - Cross-reference security events between platforms using AI-driven analysis to identify related indicators, detections, and threat intelligence in real-time. * Secure Authentication Framework - Support for multiple authentication methods including OAuth 2.0 (CrowdStrike), API tokens (Splunk), and key-based access (MISP) with automatic session management. * Asynchronous Security Operations - Non-blocking search job management for large-scale security data queries with configurable time ranges and result pagination. * Enterprise Security Workflow - Streamline SOC analyst workflows by enabling natural language security investigations across multiple security platforms through a single MCP interface. This implementation enables security teams to leverage AI assistants for comprehensive threat hunting, incident response, and security analysis across their entire security infrastructure stack.

These tools are used to query sample-related information within the foundational network data set. Currently, this includes access to sandbox analysis data.

These tools are used to query IP-related information within the foundational network data set. Currently, this includes IP geolocation lookup.

These tools are used to query domain-related data within the broader scope of foundational network security data. This includes co-occurring domains, domain popularity rankings, webpage content, and domain intelligence from the Libra data platform.

Core network security data includes PassiveDNS resolution records, domain and IP registration details, website certificate information, and IOC (Indicators of Compromise) database queries.

Zerotrusted Ai Privacy Agent

Detects PII entities in the given prompt.

网络基础数据，包括passivedns解析数据、域名和IP的注册信息、网站证书、IOC库的查询。

网络基础数据，包括passivedns解析数据、域名和IP的注册信息、网站证书、IOC库的查询。

A reference implementation of the SchemaPin protocol for cryptographically signing and verifying AI agent tool schemas to prevent supply-chain attacks.

AlienVault/USM Anywhere MCP Server - Threat intelligence and security monitoring

SafeMCP is an MCP tooling manager with simplicity and safety built in for your AI tools and Agents.

Desktop app that automatically scans and blocks malicious MCP traffic in AI apps like Cursor, Claude, VS Code and Windsurf.

MCP server for CIRCL CVE Search API with intelligent risk assessment and comprehensive vulnerability analysis.

MCP Sandbox transforms JavaScript modules into secure MCP servers, enabling AI systems to access functions safely. With automatic reflection and type inference, it simplifies the integration process for developers. 🛠️💻

Conversational cloud security compliance auditing. MCP server enabling natural language queries about AWS security posture via Claude and other AI assistants.

A Model Context Protocol (MCP) server that generates random passwords with different character sets.

AgentNull: AI System Security Threat Catalog + Proof-of-Concepts. Collection of PoCs for using Agents, MCP, and RAG in bad ways.

A PII detection Agent which helps you detect PII entities in a given prompt.

The Trend Vision One Model Context Protocol (MCP) Server enables natural language interaction between your favourite AI tooling and the Trend Vision One web APIs. This allows users to harness the power of Large Language Models (LLM) to interpret and respond to security events.

Mirror of

A comprehensive Model Context Protocol (MCP) server for web security reconnaissance and analysis.

This open-source curriculum is designed to teach the concepts and fundamentals of the Model Context Protocol (MCP), with practical examples in .NET, Java, TypeScript, JavaScript and Python.

The SonarQube MCP Server is a Model Context Protocol (MCP) server that enables seamless integration with SonarQube Server or Cloud for code quality and security. It also supports the analysis of code snippet directly within the agent context.

A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP implementations.

Node.js MCP server for UpGuard CyberRisk API integration. Provides comprehensive cybersecurity risk assessment tools with stateless HTTP transport, caching, and resilience patterns.

MCP Server for Panther

Build Secure and Compliant AI agents and MCP Servers. YC W23

Claude-Optimized Deployment Engine (CODE) - AI-powered infrastructure automation platform with Rust-accelerated Circle of Experts system. Features 20x performance boost, 11 MCP servers, 51+ tools, and comprehensive security hardening. 85-90% complete.

Research project by

The npm-package-mcp-server allows users to efficiently access and analyze source code from any NPM package. With features like smart file discovery and selective code reading, it streamlines the process for developers. 🐙🌐

All-in-one offensive security toolbox with AI agent and MCP architecture. Integrates tools like Nmap, Metasploit, FFUF, SQLMap. Enables pentesting, bug bounty hunting, threat hunting, and reporting. RAG-based responses with local knowledge base support.

A PII detection Agent which helps you detect PII entities in a given prompt.

GoPlus Security is the leading Web3 security layer, providing comprehensive protection for multiple blockchain ecosystems. This project provides a MCP server for LLM Client to connect to the GoPlus Security Intelligence. Through this server, LLM Client can directly access and analyze blockchain security data, helping users with token security analysis, address risk assessment, and comprehensive Web3 security checks.

Baidu Cloud LLM Security MCP Server focuses on addressing security issues such as compliance with generative content for third-party big models, internal security improvements for big models, and risk convergence for normalized big model operations

A Model Context Protocol (MCP) tool for retrieving and analyzing Windows event logs (e.g. Sysmon). WinLog-mcp provides programmatic access to ingest and query Windows event logs, making it ideal for security monitoring, incident response, and log analysis automation.

Servidor MCP para ciberseguridad en Windows. Expone herramientas defensivas como APIs HTTP listas para ser usadas por agentes IA, Claude Desktop o scripts personalizados. Fácil de integrar, extensible y listo para automatizar tu defensa digital.

ToolHive makes deploying MCP servers easy, secure and fun

Mirror of

Repository for creating an automatic pentesting agent using MCP servers.

Mirror of

MCP Server for Wazuh SIEM

Mirror of

Make your MPC servers secure and production ready acuvity, mcp, mcp-server, modelcontextprotocol, mtls, security

MCP Client which serves as bridge between mcp servers and local LLMs running on Ollama, Created for MCP Servers Developed by Me, However other MCP Servers may run as well

This is curated list of Security tools' MCP server

AI SOC Security Threat analysis using MCP Server

detect exposed mcp servers over the internet and enumerate their tools

Make your MPC servers secure and production ready acuvity, mcp, mcp-gateway, mcp-server, modelcontextprotocol, mtls, security

A Model Context Protocol (MCP) server for security data enrichment

Trivy MCP Server is a plugin for Trivy Vulnerability scanner that provides a server to interact with Trivy.

A Model Context Protocol (MCP) server designed to connect to a CCTV recording program (VMS) to retrieve recorded and live video streams. It also provides tools to control the VMS software, such as showing live or playback dialogs for specific channels at specified times.

A Model Context Protocol server for enriching data from multiple security products

A Model Context Protocol server that connects AI assistants like Claude to AWS security services, allowing them to autonomously query, inspect, and analyze AWS infrastructure for security issues and misconfigurations.

Enhance security posture by embedding Snyk vulnerability scanning directly into agentic workflows.

A Model Context Protocol (MCP) server for scanning IP addresses for vulnerabilities. This server provides tools to perform security scanning on individual IPs or multiple IPs at once.

An Model Context Protocol (MCP) server that provides access to Hunter API functionality, allowing AI assistants to query information about internet-connected devices and services.

A secure, isolated environment for exploring Python development with Model Context Protocol (MCP) and Language Server Protocol (LSP)

This server provides access to FoFa API functionality through the Model Context Protocol.

A Nuclei security scanning server based on MCP (Model Control Protocol), providing convenient vulnerability scanning services.一个基于 MCP (Model Control Protocol) 的 Nuclei 安全扫描服务器，提供便捷的漏洞扫描服务。

The NOVA MCP Security Gateway is a prompt-validation service that runs first in your Model Context Protocol (MCP) chain. It loads Nova rules (in .nov format), checks each incoming prompt against these rules, and blocks any that match high-severity security or jailbreak patterns.

ZoomEye MCP Server - 网络资产搜索与用户信息查询

This MCP scans files using ClamAV to detect viruses, malware, and other threats

OAuth2 Authorization Server with Spring Boot 3 and Java 24

A web3 security mcp server for users

A security scanner for your LLM agentic workflows

VIBE CODING 😈 lol

A Python toolkit providing security checks for domains, URLs, IPs, and more. Integrate easily into any Python application, use via terminal CLI, or run as an MCP server to enrich LLM context with real-time threat insights.

Model Context Protocol (MCP) server that provides GitHub API tools for user information, security issue creation, and repository security scanning. Built with TypeScript and the MCP SDK

The MySSL MCP Server

A plugin-based gateway that orchestrates other MCPs and allows developers to build upon it enterprise-grade agents.

A plugin-based gateway that orchestrates other MCPs and allows developers to build upon it enterprise-grade agents.

The MySSL MCP Server

Mcp services by marshal

MySSL MCP Server

Containerized versions of hundreds of MCP servers 📡 🧠

Vulnerable MCP Server

Mirror of

Arcjet Model Context Protocol (MCP) server. Help your AI agents implement bot detection, rate limiting, email validation, attack protection, data redaction.

Burp Suite Extension with MCP Server to enhance manual application security testing

MCP Security Playground - Hack with MCP Servers, MCP Clients. Try out different vulnerabilities and abuse LLMs and agents in a UI friendly experimentation lab

Make your MPC servers secure and production ready

MCP Ethical Hacking Security sample for educational

🔥🔒 Awesome MCP (Model Context Protocol) Security 🖥️

Run and manage MCP servers easily and securely

MCP Server that integrates with Security Copilot, Sentinel and other tools (in the future). It enhance the process of developing , testing and uploading Security Copilot artifacts.

MCP server for JADX-AI Plugin

MCP configuration to connect AI agent to a Linux machine.