Cycode CLI is a locally installed application used to scan code repositories for security vulnerabilities, including sensitive information leakage, Infrastructure as Code misconfigurations, Software Composition Analysis vulnerabilities, and Static Application Security Testing issues. This tool supports multiple scan types, such as repository scanning, path scanning, and commit history scanning, and provides an ignore rule function to exclude specific results.

The JFrog MCP Server is an experimental project that provides model context protocol services for the JFrog platform API, supporting functions such as repository management, build tracking, and release lifecycle management.

An automated suite for Android APK security analysis that integrates tools such as JEB, JADX, APKTOOL, FlowDroid, and MobSF, and provides a unified API interface through the MCP protocol to achieve vulnerability detection with multi - tool cross - validation.

A powerful MCP server implemented for BurpSuite, providing programmatic access to Burp's core functions, including proxy interception, vulnerability scanning, and traffic logging.

The ADEO CTI MCP Server is a security analysis platform that integrates the APIs of Shodan and VirusTotal, providing comprehensive network security services such as network intelligence, vulnerability assessment, and threat detection.

An MCP server based on containerized Kali Linux that provides the ability to execute commands for penetration testing and security research tools, supporting background task management and interactive vulnerability detection.

GhidraMCP is a Ghidra plugin that enables AI - assisted binary analysis through the Model Context Protocol (MCP), connecting reverse engineering with AI assistants and providing functions such as natural language interaction, in - depth code analysis, and security vulnerability detection.

AI package security scanning tool, offering two modes: CLI and MCP server. It can quickly detect vulnerabilities, prompt injection, and supply chain attacks in MCP servers, AI skills, and software packages.

The Socket MCP server is a Model Context Protocol service for dependency security scanning, providing security scores and vulnerability detection functions for software package ecosystems such as npm and PyPI, supporting AI assistant integration and multiple deployment methods.

MCP Fortress is a comprehensive security tool designed for Model Context Protocol (MCP) servers, offering automated vulnerability scanning, runtime protection, risk scoring, and threat detection functions, and supporting integration with AI assistants such as Claude Code through the MCP server mode for security analysis.

A modular MCP server that provides comprehensive security vulnerability intelligence tools, including CVE queries, EPSS scoring, CVSS calculation, vulnerability detection, and Python package security checks.

The BurpSuite MCP server is an implementation based on FastAPI that provides programmatic access to the core functions of BurpSuite, including proxy interception, vulnerability scanning, and traffic log analysis.

SecureAnnex MCP Server is a tool for analyzing the security of browser extensions, providing functions for querying, analyzing, and evaluating the security of extensions, including vulnerability detection, signature check, code review, etc.

The Dynatrace MCP Server is a remote service that allows developers to interact with the Dynatrace observability platform, integrating real-time monitoring data directly into the development workflow. It supports functions such as problem detection, log query, and security vulnerability analysis.

MCP Server Semgrep is a server that complies with the Model Context Protocol standard, integrating the Semgrep static analysis tool with an AI assistant to provide code security analysis, quality improvement, and vulnerability detection functions. The project simplifies the architecture design, supports multi - platform operation, can be installed in multiple ways, and provides a rich set of code analysis functions.

A Java source code vulnerability auditing tool based on function-level taint analysis. It provides security analysis capabilities for AI assistants through the MCP protocol, supporting the detection of multiple vulnerability types and call chain tracing.

VulniCheck is an AI - driven security scanner that provides comprehensive security analysis for Python projects and GitHub repositories. It runs as a Docker - based HTTP MCP server, supports standard HTTP streaming, and offers containerized deployment and comprehensive vulnerability scanning capabilities, including dependency checking, key detection, Docker file analysis, and AI risk assessment.

JADX-MCP-SERVER is a Python server that works with the JADX-AI-MCP plugin, enabling LLM (such as Claude) to analyze decompiled Android APK code in real-time through the MCP protocol, providing reverse engineering functions such as vulnerability detection and code understanding.

A comprehensive code repository security scanning tool that provides functions such as vulnerability detection, sensitive information scanning, and dependency auditing through the MCP server to help developers identify security issues in code repositories.

A security analysis MCP server integrating OSV.dev and an AI model to detect code vulnerabilities and provide security suggestions.

MCP Server Pentest is an automated web security testing tool that provides XSS and SQL injection vulnerability detection, browser interaction, and monitoring functions.

AI Coding Assistant Security Scanner, scans code vulnerabilities, detects AI hallucination packages, and prevents prompt injection attacks through MCP or CLI, supports 12 languages and more than 1,700 security rules

CyberMCP is a network security testing server based on the MCP protocol, focusing on API security vulnerability detection and providing various authentication testing and injection vulnerability detection tools.

This is a security analysis MCP server based on Symbiotic CLI, which provides code and infrastructure security scanning tools for compatible clients through the MCP protocol, supporting static analysis, vulnerability detection, and automatic repair suggestions.

A Nuclei security scanning service based on the MCP protocol, supporting multiple scanning options and JSON - format result output.

A Shodan scanning service interface based on the Model Context Protocol, providing a standardized way to access Shodan's Internet scanning capabilities, including device search, DNS query, and vulnerability detection functions.

An enterprise-level intelligent code analysis platform that provides codebase analysis, technical debt assessment, security vulnerability detection, and other functions for AI assistants through the MCP server. It supports local and remote code sources and automatically generates PDF reports.

The Codacy MCP Server is an API service that provides code quality, security analysis, and repository management. It supports integration through various IDE plugins to help developers conduct code reviews, technical debt assessment, and security vulnerability detection.