MCP-Scan: An MCP Security Scanner
Overview
what is MCP-Scan?
MCP-Scan is a security scanning tool designed to check installed MCP servers for common security vulnerabilities such as prompt injections, tool poisoning, and cross-origin escalations.
how to use MCP-Scan?
To use MCP-Scan, run the command uvx mcp-scan@latest in your terminal to initiate the scanning process on your MCP server configurations.
key features of MCP-Scan?
- Scans for prompt injection attacks in tool descriptions.
- Detects cross-origin escalation attacks.
- Tool pinning to prevent MCP rug pull attacks.
- Inspecting tool descriptions of installed tools.
use cases of MCP-Scan?
- Identifying security vulnerabilities in MCP server configurations.
- Ensuring the integrity of tools used in MCP environments.
- Preventing potential security breaches through proactive scanning.
FAQ from MCP-Scan?
- What types of vulnerabilities does MCP-Scan check for?
MCP-Scan checks for prompt injections, tool poisoning, and cross-origin escalations.
- Is my data safe when using MCP-Scan?
Yes, MCP-Scan does not store or log any usage data, ensuring your configurations remain private.
- How can I contribute to MCP-Scan?
Contributions are welcome! You can open an issue on the GitHub repository for suggestions or bug reports.
Recommend Servers
TraeBuild with Free GPT-4.1 & Claude 3.7. Fully MCP-Ready.
WindsurfThe new purpose-built IDE to harness magic
EdgeOne Pages MCPAn MCP service designed for deploying HTML content to EdgeOne Pages and obtaining an accessible public URL.
MiniMax MCPOfficial MiniMax Model Context Protocol (MCP) server that enables interaction with powerful Text to Speech, image generation and video generation APIs.
AiimagemultistyleA Model Context Protocol (MCP) server for image generation and manipulation using fal.ai's Stable Diffusion model.
Y GuiA web-based graphical interface for AI chat interactions with support for multiple AI models and MCP (Model Context Protocol) servers.
MCP AdvisorMCP Advisor & Installation - Use the right MCP server for your needs
Serper MCP ServerA Serper MCP Server
Tavily Mcp
DeepChatYour AI Partner on Desktop
Zhipu Web SearchZhipu Web Search MCP Server is a search engine specifically designed for large models. It integrates four search engines, allowing users to flexibly compare and switch between them. Building upon the web crawling and ranking capabilities of traditional search engines, it enhances intent recognition capabilities, returning results more suitable for large model processing (such as webpage titles, URLs, summaries, site names, site icons, etc.). This helps AI applications achieve "dynamic knowledge acquisition" and "precise scenario adaptation" capabilities.
Baidu Map百度地图核心API现已全面兼容MCP协议,是国内首家兼容MCP协议的地图服务商。
BlenderBlenderMCP connects Blender to Claude AI through the Model Context Protocol (MCP), allowing Claude to directly interact with and control Blender. This integration enables prompt assisted 3D modeling, scene creation, and manipulation.
CursorThe AI Code Editor
RedisA Model Context Protocol server that provides access to Redis databases. This server enables LLMs to interact with Redis key-value stores through a set of standardized tools.
Howtocook Mcp基于Anduin2017 / HowToCook (程序员在家做饭指南)的mcp server,帮你推荐菜谱、规划膳食,解决“今天吃什么“的世纪难题;
Based on Anduin2017/HowToCook (Programmer's Guide to Cooking at Home), MCP Server helps you recommend recipes, plan meals, and solve the century old problem of "what to eat today"
Jina AI MCP ToolsA Model Context Protocol (MCP) server that integrates with Jina AI Search Foundation APIs.
Playwright McpPlaywright MCP server
ChatWiseThe second fastest AI chatbot™
Visual Studio Code - Open Source ("Code - OSS")Visual Studio Code
Amap Maps高德地图官方 MCP Server