MCP-Scan is a security scanning tool for MCP servers, used to detect common security vulnerabilities such as prompt injection, tool poisoning, and cross-domain escalation.

MCP - Shield is a security tool for scanning MCP server vulnerabilities, which can detect security risks such as tool poisoning attacks, data leakage channels, and cross - domain violations.

Agentic Radar is a security scanning tool for analyzing and assessing agentic systems, helping developers, researchers, and security experts understand the workflows of agentic systems and identify potential vulnerabilities.

Pipelock is an open-source AI agent firewall that provides security protection with zero runtime dependencies through a single binary file. It adopts an architecture with separated capabilities and deploys a nine-layer scanning pipeline between the agent and the Internet to prevent secret leakage, prompt injection, and malicious tool calls. It supports multiple proxy modes (Fetch proxy, forward proxy, WebSocket proxy) and MCP proxy, and provides functions such as an emergency stop switch, audit logs, and SIEM integration.

Cycode CLI is a locally installed application used to scan code repositories for security vulnerabilities, including sensitive information leakage, Infrastructure as Code misconfigurations, Software Composition Analysis vulnerabilities, and Static Application Security Testing issues. This tool supports multiple scan types, such as repository scanning, path scanning, and commit history scanning, and provides an ignore rule function to exclude specific results.

The Semgrep MCP Server is a server based on the Model Context Protocol (MCP) for scanning code for security vulnerabilities through Semgrep, supporting multiple integration methods and tools.

An MCP server implemented based on go - mcp, used for automated vulnerability scanning tasks in emergency response. It supports generating POCs, creating scanning tasks and workflows, and is compatible with both HTTP API and MCP protocol.

NPM Sentinel MCP is an AI-based NPM package analysis server that provides real-time security scanning, dependency analysis, performance evaluation, etc. It supports integration with Claude and Anthropic AI to optimize NPM ecosystem management.

This is an MCP server project for GitHub Advanced Security (GHAS), used to call the security scanning functions of GitHub repositories through the MCP protocol, including dependency alerts, secret scanning alerts, and code scanning alerts. It supports authentication through GitHub CLI or a personal access token and provides an installation method for the VS Code extension.

An MCP server that provides an interface to interact with the scanning and proxy functions of Burpsuite Professional, supporting functions such as vulnerability scanning, traffic capture, and site structure viewing.

An AI-based NPM package analysis MCP server that provides real-time security scanning, dependency analysis, performance evaluation, and other functions. It integrates Claude and Anthropic AI technologies to optimize the management of the npm ecosystem.

A powerful MCP server implemented for BurpSuite, providing programmatic access to Burp's core functions, including proxy interception, vulnerability scanning, and traffic logging.

BugBounty MCP Server is a comprehensive security testing tool that interacts with LLM through natural language, providing over 92 penetration testing tools, covering functions such as reconnaissance, scanning, vulnerability assessment, web applications, network security, OSINT, vulnerability exploitation, and report generation.

MCP Servers is a project hosted on GitHub, which includes workflows such as automated testing, code coverage checking, and security scanning, and follows open - source licenses and community codes of conduct.

A Nessus vulnerability scanning server based on the MCP protocol, supporting vulnerability scanning, management, analysis, and simulation testing functions

An MCP server integrating Trivy security scanning capabilities, providing project vulnerability scanning and automatic fix capabilities through a standardized interface.

Skill Retriever is an MCP server based on a graph database, specifically designed for the retrieval and installation of Claude Code components. It automatically indexes component repositories on GitHub, returns the minimum correct set of components and their dependencies based on task descriptions through semantic search and graph traversal algorithms, and supports security scanning and automatic synchronization and updates.

A Frida - based game hacking MCP server that provides memory scanning, value modification, function hooking, and code injection capabilities similar to Cheat Engine, supporting AI assistants for game modification and reverse engineering analysis.

A secure MCP skill version manager that supports automatic update detection, security scanning, multi-version management, intelligent merging, and A/B testing.

A comprehensive security operations platform integrating multiple security tools, providing a unified interface to run various security scanning and testing tools, supporting Docker deployment and JSON format output.

A website security scanning tool based on the MCP protocol, integrating dirsearch directory scanning and firecrawl crawler technology, capable of automatically identifying the website technology stack and classifying vulnerability risk levels

The Socket MCP server is a Model Context Protocol service for dependency security scanning, providing security scores and vulnerability detection functions for software package ecosystems such as npm and PyPI, supporting AI assistant integration and multiple deployment methods.

The BurpSuite MCP server is an implementation based on FastAPI that provides programmatic access to the core functions of BurpSuite, including proxy interception, vulnerability scanning, and traffic log analysis.

Sonatype MCP Server is a protocol server that connects AI assistants to Sonatype's dependency management and security intelligence platform, providing developers with real-time insights into security vulnerability scanning, license compliance checking, and health analysis of open-source dependencies.

Lyra Intel is a complete intelligent infrastructure engine for large-scale codebase analysis. It combines in-depth code analysis, AI-driven insights, semantic search, and security scanning, supports deployment from local to enterprise level, and provides comprehensive code understanding, security auditing, and intelligent insight functions.

MCP Fortress is a comprehensive security tool designed for Model Context Protocol (MCP) servers, offering automated vulnerability scanning, runtime protection, risk scoring, and threat detection functions, and supporting integration with AI assistants such as Claude Code through the MCP server mode for security analysis.

AI package security scanning tool, offering two modes: CLI and MCP server. It can quickly detect vulnerabilities, prompt injection, and supply chain attacks in MCP servers, AI skills, and software packages.

Spring MCP Bridge is an automated tool that can convert REST endpoints of Spring Boot applications into MCP servers, enabling AI assistants to directly interact with APIs. It supports automatic endpoint scanning, model structure preservation, and document annotation extraction without modifying existing code.

The Nuclei MCP Server is a high-performance vulnerability scanning service implementation based on the Mark3 Labs MCP protocol

HydraMCP is a lightweight and scalable network security toolkit that connects AI assistants with security tools through the Model Context Protocol (MCP), supporting AI - assisted security research, scanning, and analysis.

MCPwner is a security research automation server based on the Model Context Protocol, integrating multiple security testing tools (SAST, SCA, secret scanning, etc.) to provide a unified interface for LLM - driven security analysis workflows.

This project is a collection of MCP servers focusing on the network security field, including various tools such as SQL injection scanning, network asset search, and document conversion.

A vulnerability scanning server based on the MCP protocol, supporting security scanning of single or multiple IP addresses, providing detailed vulnerability reports and repair suggestions.

A simple virus scanning MCP service based on the ClamAV engine, supporting file scanning through SSE connections.

A simple and efficient code TODO scanning tool that automatically discovers and summarizes TODO items in code by scanning comments in Git repositories, helping developers track unfinished tasks.

FastApply MCP Server is an enterprise-level code intelligence platform that provides comprehensive code analysis, search, and refactoring capabilities through local AI models, AST semantic search, security scanning, and intelligent pattern recognition. It supports multi-language development and large codebase processing.

This is an MCP server that provides a standardized interface for the CodeQL N1ght tool, enabling AI assistants to automate the code analysis workflow, including environment installation, database creation, and security scanning.

The RISKEN MCP server is a protocol server that provides RISKEN API integration, supporting automated data acquisition, scanning, and analysis, as well as building AI tool applications.

An MCP server that provides Nmap network scanning capabilities, supporting customizable scans, result storage, and AI analysis.

This project is a Bluetooth device detection server based on the MCP protocol. It supports cross - platform scanning and identification of Bluetooth devices and provides an API interface for AI assistants to call.