MCP-Scan is a security scanning tool for MCP servers, used to detect common security vulnerabilities such as prompt injection, tool poisoning, and cross-domain escalation.

Repomix is a tool that packages codebases into an AI - friendly format, supporting local and remote repository handling, providing code compression, security checks, and multiple output formats.

The Supabase MCP Server is an open - source tool that allows IDEs to securely execute SQL, manage schema changes, call the Supabase management API, and use the Auth Admin SDK, with built - in security control.

MCP - Shield is a security tool for scanning MCP server vulnerabilities, which can detect security risks such as tool poisoning attacks, data leakage channels, and cross - domain violations.

Agentic Radar is a security scanning tool for analyzing and assessing agentic systems, helping developers, researchers, and security experts understand the workflows of agentic systems and identify potential vulnerabilities.

Aderyn is an open - source Solidity smart contract static analysis tool written in Rust, which helps developers and security researchers discover vulnerabilities in Solidity code. It supports Foundry and Hardhat projects, can generate reports in multiple formats, and provides a VSCode extension.

This is a curated list of Web3 Model Context Protocol (MCP) servers, covering multiple categories such as chain interaction, trading, DeFi, market data, tools, and social. MCP is an open protocol that standardizes how applications provide context to LLMs, similar to the USB - C port for AI applications. DeMCP is the first decentralized MCP network, focusing on providing self - developed and open - source MCP services for agents, supporting cryptocurrency payments, and redefining the security and reliability of MCP by combining TEE and blockchain registries.

The MCP MongoDB Server is a model context protocol service that allows LLMs to interact with MongoDB databases, providing functions such as collection schema checking, query execution, and intelligent ID handling, and supporting read - only mode and security configuration.

Nexus is an AI tool aggregation gateway that supports connecting multiple MCP servers and LLM providers, providing tool search, execution, and model routing functions through a unified endpoint, and supporting security authentication and rate limiting.

Security Detections MCP is a server based on the Model Context Protocol that allows LLMs to query a unified security detection rule database covering Sigma, Splunk ESCU, Elastic, and KQL formats. The latest version 3.0 is upgraded to an autonomous detection engineering platform that can automatically extract TTPs from threat intelligence, analyze coverage gaps, generate SIEM-native format detection rules, run tests, and verify. The project includes over 71 tools, 11 pre-built workflow prompts, and a knowledge graph system, supporting multiple SIEM platforms.

The AI Infrastructure Agent is an intelligent system that allows users to manage AWS cloud resources through natural language commands. It uses AI models to convert user requirements into executable AWS operations and provides web dashboards, state management, and security protection functions.

BloodHound - MCP is a project that integrates the Model Context Protocol (MCP) server with BloodHound, analyzing Active Directory security data through natural language.

BloodHound - MCP is a tool that integrates the Model Context Protocol (MCP) server with BloodHound. It analyzes Active Directory attack paths through natural language and provides more than 75 dedicated tools for AD security assessment.

Awesome MCP Servers is a comprehensive collection of Model Context Protocol (MCP) servers, covering 7,158 MCP servers divided into 33 categories, including AI integration, art and media, browser automation, cloud services, databases, developer tools, file systems, finance, gaming, hardware, healthcare, infrastructure, knowledge management, location maps, marketing, monitoring, multimedia processing, operating systems, project management, scientific research, security, social media, travel and transportation, utilities, and version control, etc.

JADX is a powerful decompilation tool for Android Dex and Apk files. It supports converting Dalvik bytecode into Java source code, decoding resource files, and restoring code obfuscation. It provides two operation modes: command-line and graphical interface, and is suitable for developers and security researchers.

A Proxmox management server based on Python, providing an interface to interact with the Proxmox virtualization platform, supporting node, virtual machine, and container management, with security authentication and a variety of functional tools.

An MCP server set in the Kali Linux environment, focusing on reverse engineering, security testing, and automated workflows.

Pipelock is an open-source AI agent firewall that provides security protection with zero runtime dependencies through a single binary file. It adopts an architecture with separated capabilities and deploys a nine-layer scanning pipeline between the agent and the Internet to prevent secret leakage, prompt injection, and malicious tool calls. It supports multiple proxy modes (Fetch proxy, forward proxy, WebSocket proxy) and MCP proxy, and provides functions such as an emergency stop switch, audit logs, and SIEM integration.

Cycode CLI is a locally installed application used to scan code repositories for security vulnerabilities, including sensitive information leakage, Infrastructure as Code misconfigurations, Software Composition Analysis vulnerabilities, and Static Application Security Testing issues. This tool supports multiple scan types, such as repository scanning, path scanning, and commit history scanning, and provides an ignore rule function to exclude specific results.

ToolHive is a lightweight tool designed to simplify the deployment and management of MCP servers, providing ease of use, consistency, and security.

The Semgrep MCP Server is a server based on the Model Context Protocol (MCP) for scanning code for security vulnerabilities through Semgrep, supporting multiple integration methods and tools.

An automated suite for Android APK security analysis that integrates tools such as JEB, JADX, APKTOOL, FlowDroid, and MobSF, and provides a unified API interface through the MCP protocol to achieve vulnerability detection with multi - tool cross - validation.

Awesome MCP Security is a collection of resources related to the security of the Model Context Protocol (MCP), including security considerations, papers, videos, articles, tools, and servers, aiming to help users understand and address MCP - related security challenges.

This project is a collection of MCP servers designed for Kali Linux, aiming to enhance reverse engineering, security testing, and automation workflows. It integrates tools such as Nmap and Wireshark and provides Docker sandbox support.

This project implements functions similar to Claude Code through the MCP protocol, providing tools for code understanding, modification, and command execution. It supports multiple models and Jupyter notebook operations, and has security control and development expansion capabilities.

Corbat MCP is an AI coding standards server that injects team coding specifications before the AI generates code through the MCP protocol, ensuring that the generated code meets production standards, security requirements, and passes the code review. It supports multiple programming languages and development tools.

The Kibana MCP Server project is a community-maintained tool that allows MCP-compatible clients (such as Claude Desktop) to access Kibana instances through natural language or programming. It is based on the official API documentation of Elastic Kibana, providing functions such as security authentication, API endpoint management, and search execution, and supporting two interaction modes: tools and resources.

A MySQL query server based on the MCP framework, providing an SSE real-time database operation interface and security protection mechanism

An AI-based NPM package analysis MCP server that provides real-time security scanning, dependency analysis, performance evaluation, and other functions. It integrates Claude and Anthropic AI technologies to optimize the management of the npm ecosystem.

An MCP server that can automatically convert the project's npm scripts into tools that can be called by the AI assistant. It supports npm, pnpm, yarn, and bun, and provides security configuration and automatic detection functions.

An MCP server based on containerized Kali Linux that provides the ability to execute commands for penetration testing and security research tools, supporting background task management and interactive vulnerability detection.

An MCP server based on the Security Controls Framework (SCF), providing two-way mapping and search functions for 1,451 security control items across 262 compliance frameworks (including ISO 27001, NIST CSF, DORA, AI governance standards, etc.), enabling AI assistants to directly query and associate the requirements of different security standards.

The ADEO CTI MCP Server is a security analysis platform that integrates the APIs of Shodan and VirusTotal, providing comprehensive network security services such as network intelligence, vulnerability assessment, and threat detection.

NPM Sentinel MCP is an AI-based NPM package analysis server that provides real-time security scanning, dependency analysis, performance evaluation, etc. It supports integration with Claude and Anthropic AI to optimize NPM ecosystem management.

This is an MCP server project for GitHub Advanced Security (GHAS), used to call the security scanning functions of GitHub repositories through the MCP protocol, including dependency alerts, secret scanning alerts, and code scanning alerts. It supports authentication through GitHub CLI or a personal access token and provides an installation method for the VS Code extension.

This project is an M365 MCP server that implements the CISA BOD 25 - 01 security controls. It manages Microsoft 365 security settings through the Microsoft Graph API and provides functions such as blocking legacy authentication, risk - based access control, MFA management, application registration control, and password policy management.

CKB is a tool that transforms a codebase into a queryable knowledge base. It helps developers understand code, analyze impacts, find owners, and detect dead code via CLI, API, or AI assistants, improving development efficiency and security.

An MCP server for performing external reconnaissance activities, providing functions such as DNS enumeration, subdomain discovery, email security analysis, and SSL certificate inspection.

Pincer-MCP is a security-hardened MCP gateway that protects the API keys of AI agents through a proxy token architecture, ensuring that agents can only use proxy tokens and cannot access real keys. It supports various AI services and GPG signing tools.

This project is a toolset for managing and configuring multiple Model Context Protocol (MCP) servers, mainly serving AI assistants such as Claude Desktop. It provides functions such as file system access, SQLite database queries, web automation, and GitHub integration, and includes installation scripts, configuration templates, and security practice guides.