Repomix is a tool that packages codebases into an AI - friendly format, supporting local and remote repository handling, providing code compression, security checks, and multiple output formats.

The Supabase MCP Server is an open - source tool that allows IDEs to securely execute SQL, manage schema changes, call the Supabase management API, and use the Auth Admin SDK, with built - in security control.

MCP-Scan is a security scanning tool for MCP servers, used to detect common security vulnerabilities such as prompt injection, tool poisoning, and cross-domain escalation.

MCP - Shield is a security tool for scanning MCP server vulnerabilities, which can detect security risks such as tool poisoning attacks, data leakage channels, and cross - domain violations.

Agentic Radar is a security scanning tool for analyzing and assessing agentic systems, helping developers, researchers, and security experts understand the workflows of agentic systems and identify potential vulnerabilities.

Aderyn is an open - source Solidity smart contract static analysis tool written in Rust, which helps developers and security researchers discover vulnerabilities in Solidity code. It supports Foundry and Hardhat projects, can generate reports in multiple formats, and provides a VSCode extension.

This is a curated list of Web3 Model Context Protocol (MCP) servers, covering multiple categories such as chain interaction, trading, DeFi, market data, tools, and social. MCP is an open protocol that standardizes how applications provide context to LLMs, similar to the USB - C port for AI applications. DeMCP is the first decentralized MCP network, focusing on providing self - developed and open - source MCP services for agents, supporting cryptocurrency payments, and redefining the security and reliability of MCP by combining TEE and blockchain registries.

The MCP MongoDB Server is a model context protocol service that allows LLMs to interact with MongoDB databases, providing functions such as collection schema checking, query execution, and intelligent ID handling, and supporting read - only mode and security configuration.

Nexus is an AI tool aggregation gateway that supports connecting multiple MCP servers and LLM providers, providing tool search, execution, and model routing functions through a unified endpoint, and supporting security authentication and rate limiting.

The AI Infrastructure Agent is an intelligent system that allows users to manage AWS cloud resources through natural language commands. It uses AI models to convert user requirements into executable AWS operations and provides web dashboards, state management, and security protection functions.

BloodHound - MCP is a project that integrates the Model Context Protocol (MCP) server with BloodHound, analyzing Active Directory security data through natural language.

Awesome MCP Servers is a comprehensive collection of Model Context Protocol (MCP) servers, covering 7,158 MCP servers divided into 33 categories, including AI integration, art and media, browser automation, cloud services, databases, developer tools, file systems, finance, gaming, hardware, healthcare, infrastructure, knowledge management, location maps, marketing, monitoring, multimedia processing, operating systems, project management, scientific research, security, social media, travel and transportation, utilities, and version control, etc.

BloodHound - MCP is a tool that integrates the Model Context Protocol (MCP) server with BloodHound. It analyzes Active Directory attack paths through natural language and provides more than 75 dedicated tools for AD security assessment.

JADX is a powerful decompilation tool for Android Dex and Apk files. It supports converting Dalvik bytecode into Java source code, decoding resource files, and restoring code obfuscation. It provides two operation modes: command-line and graphical interface, and is suitable for developers and security researchers.

An MCP server set in the Kali Linux environment, focusing on reverse engineering, security testing, and automated workflows.

A Proxmox management server based on Python, providing an interface to interact with the Proxmox virtualization platform, supporting node, virtual machine, and container management, with security authentication and a variety of functional tools.

Cycode CLI is a locally installed application used to scan code repositories for security vulnerabilities, including sensitive information leakage, Infrastructure as Code misconfigurations, Software Composition Analysis vulnerabilities, and Static Application Security Testing issues. This tool supports multiple scan types, such as repository scanning, path scanning, and commit history scanning, and provides an ignore rule function to exclude specific results.

ToolHive is a lightweight tool designed to simplify the deployment and management of MCP servers, providing ease of use, consistency, and security.

The Semgrep MCP Server is a server based on the Model Context Protocol (MCP) for scanning code for security vulnerabilities through Semgrep, supporting multiple integration methods and tools.

An automated suite for Android APK security analysis that integrates tools such as JEB, JADX, APKTOOL, FlowDroid, and MobSF, and provides a unified API interface through the MCP protocol to achieve vulnerability detection with multi - tool cross - validation.

Awesome MCP Security is a collection of resources related to the security of the Model Context Protocol (MCP), including security considerations, papers, videos, articles, tools, and servers, aiming to help users understand and address MCP - related security challenges.

This project is a collection of MCP servers designed for Kali Linux, aiming to enhance reverse engineering, security testing, and automation workflows. It integrates tools such as Nmap and Wireshark and provides Docker sandbox support.

This project implements functions similar to Claude Code through the MCP protocol, providing tools for code understanding, modification, and command execution. It supports multiple models and Jupyter notebook operations, and has security control and development expansion capabilities.

A MySQL query server based on the MCP framework, providing an SSE real-time database operation interface and security protection mechanism

MobSF MCP is a Node.js-based implementation of the Model Context Protocol that provides a standardized interface for the Mobile Security Framework (MobSF) and supports integration with automated workflows and third-party tools.

Web Application Penetration Testing MCP is a comprehensive tool focusing on the analysis of business logic security vulnerabilities. Through systematic crawling and analysis, it can identify security issues that standard scanners cannot detect.

This is an MCP server project for GitHub Advanced Security (GHAS), used to call the security scanning functions of GitHub repositories through the MCP protocol, including dependency alerts, secret scanning alerts, and code scanning alerts. It supports authentication through GitHub CLI or a personal access token and provides an installation method for the VS Code extension.

BurpMCP is a Burp Suite extension that enhances application security testing capabilities by integrating modern AI technology and provides intelligent assisted testing functions.

An MCP server for performing external reconnaissance activities, providing functions such as DNS enumeration, subdomain discovery, email security analysis, and SSL certificate inspection.

NPM Sentinel MCP is an AI-based NPM package analysis server that provides real-time security scanning, dependency analysis, performance evaluation, etc. It supports integration with Claude and Anthropic AI to optimize NPM ecosystem management.

An Ubuntu MCP server based on a security - first model, providing controlled system operation access for AI assistants, including multi - layer security protection, audit logs, and resource limits.

The ADEO CTI MCP Server is a security analysis platform that integrates the APIs of Shodan and VirusTotal, providing comprehensive network security services such as network intelligence, vulnerability assessment, and threat detection.

The Kibana MCP Server project is a community-maintained tool that allows MCP-compatible clients (such as Claude Desktop) to access Kibana instances through natural language or programming. It is based on the official API documentation of Elastic Kibana, providing functions such as security authentication, API endpoint management, and search execution, and supporting two interaction modes: tools and resources.

This project is an M365 MCP server that implements the CISA BOD 25 - 01 security controls. It manages Microsoft 365 security settings through the Microsoft Graph API and provides functions such as blocking legacy authentication, risk - based access control, MFA management, application registration control, and password policy management.

ServeMyAPI is a secure API key management tool based on macOS Keychain, providing cross-project key storage and access services through the MCP protocol, which solves the security and collaboration problems of traditional.env files.

An MCP server based on containerized Kali Linux that provides the ability to execute commands for penetration testing and security research tools, supporting background task management and interactive vulnerability detection.

The GoPlus Security MCP Server provides blockchain security analysis tools based on the GoPlus Security API, including Rug Pull detection, phishing website identification, NFT security analysis, etc. It supports multiple mainstream blockchain networks such as Ethereum, BSC, and Polygon.

This project is a toolset for managing and configuring multiple Model Context Protocol (MCP) servers, mainly serving AI assistants such as Claude Desktop. It provides functions such as file system access, SQLite database queries, web automation, and GitHub integration, and includes installation scripts, configuration templates, and security practice guides.

An AI-based NPM package analysis MCP server that provides real-time security scanning, dependency analysis, performance evaluation, and other functions. It integrates Claude and Anthropic AI technologies to optimize the management of the npm ecosystem.

The MCP Terminal Server is a secure command-line interface service that provides terminal interaction capabilities for AI models while ensuring system security.