MCPwner: Automated MCP Security Research Server with SAST & SCA, Offering Unified Interface for Security Analysis

Mcpwner

MCPwner is a security research automation server based on the Model Context Protocol, integrating multiple security testing tools (SAST, SCA, secret scanning, etc.) to provide a unified interface for LLM - driven security analysis workflows.

Security Developer tools #Security automation #Vulnerability scanning #LLM integration #Containerization .Python

rating : 2.5 points

downloads : 0

update time : 2026-03-13

Open Site

What is MCPwner?

MCPwner is an AI assistant extension tool specifically designed for security research. It's like a "security toolbox" that packages more than 20 professional security scanning tools (such as code vulnerability detection, sensitive information search, and dependency library security check) into a unified interface, allowing your AI assistants (such as Claude, Cursor, Kiro, etc.) to directly call these tools to analyze your code projects. Traditionally, security researchers need to manually run various tools and then copy and paste the results for AI analysis. MCPwner eliminates this cumbersome process, enabling AI assistants to directly access security scan results for continuous reasoning, correlation analysis, and attack path discovery.

How to use MCPwner?

Using MCPwner is very simple, just follow three steps: 1. Start the MCPwner service with a single click using Docker. 2. Configure the MCPwner connection in your AI assistant (Claude Desktop, Cursor, Kiro, etc.). 3. Directly ask the AI assistant questions, such as "Scan my project for security vulnerabilities" or "Check if this repository has leaked keys". The AI assistant will automatically call the corresponding tools in MCPwner, run the scan, and return the structured results to you, along with analysis and suggestions.

Applicable scenarios

MCPwner is particularly suitable for the following scenarios: • Developers who want to check code security in real - time during the coding process. • Security researchers who need to quickly analyze the security status of multiple projects. • Teams that want to integrate security scanning into the AI - assisted development workflow. • Educational scenarios for learning application security testing tools and methods. • Open - source project maintainers who want to check project dependencies and code vulnerabilities.

Main features

Unified interface

Integrate more than 20 security tools into a single interface, including various tools such as SAST (Static Application Security Testing), SCA (Software Composition Analysis), and key detection, eliminating the need to switch between different tools.

AI assistant integration

All tool outputs are converted into structured formats (SARIF/JSON), which can be directly understood and analyzed by AI assistants to provide intelligent security suggestions and repair solutions.

Containerized execution

All security tools run in Docker containers, ensuring environment isolation, consistent dependencies, and no impact on your host system.

Automatic data persistence

The metadata of the workspace and scan database will be automatically saved, and historical records will not be lost even if the container is restarted, supporting long - term security research projects.

Extensible architecture

Adopt a plug - in architecture, which can easily add new security tools. In the future, it is planned to support more reconnaissance, dynamic testing, and infrastructure security tools.

Advantages

🚀 One - click deployment: Quickly start all services using Docker Compose.

🤖 AI - native: Designed specifically for AI assistants, providing structured output for AI analysis.

🔒 Security isolation: Tools run in containers to avoid polluting the host environment.

📊 Result correlation: Able to correlate the scan results of multiple tools to discover complex attack paths.

💾 Data persistence: Important data is automatically saved, supporting long - term research projects.

Limitations

⚠️ Resource requirements: Requires at least 8GB RAM (16GB recommended) and 20GB of disk space.

🐳 Docker dependency: Docker and Docker Compose must be installed.

📶 Network access: Some tools need to access the Internet to download databases and updates.

⏱️ Scan time: Large projects may require a long scan time.

🔧 Configuration learning: You need to learn basic configuration methods when using it for the first time.

How to use

Install Docker

Ensure that your system has Docker Engine 20.10+ and Docker Compose 2.0+ installed. Windows users need to install WSL2.

Download MCPwner

Clone the MCPwner repository to your local machine and enter the project directory.

Start the service

Use Docker Compose to start all services. The Docker images of all security tools will be automatically downloaded on the first run.

Configure the AI assistant

Add the MCPwner configuration according to the AI assistant you are using. Here is an example of configuring Claude Desktop (macOS).

Start using

Restart your AI assistant, and then you can directly ask security - related questions.

Usage examples

Case 1: Check for key leakage in a GitHub repository

You've found an interesting GitHub repository and want to quickly check if it accidentally contains sensitive information such as API keys, passwords, etc.

Case 2: Security audit of a Python project

You've developed a Python Web application and want to conduct a comprehensive security check before release.

Case 3: Attack path analysis

You're in charge of an application with a microservice architecture and want to understand the complete attack paths that attackers might use.

Frequently Asked Questions

Is MCPwner free?

Do I need programming knowledge to use it?

Will the scan modify my code?

Which programming languages are supported?

Will the scan results be sent to an external server?

How to update the database of security tools?

Can I scan private repositories?

What should I do if I encounter an error when executing a tool?

Related resources

MCPwner GitHub repository

Source code, issue tracking, and the latest version

Model Context Protocol official website

Understand the technical details and specifications of the MCP protocol

Docker installation guide

Docker installation tutorials for various platforms

Claude Desktop configuration

How to configure Claude Desktop to use the MCP server

Security testing tool documentation

Official documentation for CodeQL (documentation for other tools can be found in their respective repositories)

🚀 MCPwner

A Model Context Protocol server for automating security research, integrating security testing tools into LLM - driven workflows.

🚀 Quick Start

MCPwner is a Model Context Protocol (MCP) server that integrates security testing tools into LLM - driven workflows. It offers a unified interface for secret scanning, static analysis (SAST), software composition analysis (SCA), and vulnerability research including 0 - day discovery. Instead of manually chaining tools and pasting outputs into your LLM, MCPwner standardizes and streams results directly into the model's working context, enabling continuous reasoning, correlation, and attack path discovery across the entire security research lifecycle.

⚠️ Important Note

This project is under active development. Learn more about MCPs here.

✨ Features

🔧 Unified Interface: A single MCP server integrating multiple security tools (SAST, SCA, secrets detection).
🤖 LLM Integration: Structured output formats (SARIF/JSON) for direct consumption by AI assistants.
🔍 Continuous Analysis: Correlate findings across multiple tools to identify attack paths and 0 - day vulnerabilities.
🏗️ Multi - Agent Architecture: Designed for specialized agents collaborating across security phases.
🐳 Containerized Execution: Isolated tool environments for reproducible scans.
💾 Automatic Persistence: Workspace and database metadata survives container restarts.
🔌 Extensible: Plugin architecture for adding new security tools.

📦 Installation

Prerequisites

System Requirements:

Docker Engine 20.10+ and Docker Compose 2.0+.
8GB RAM minimum (16GB recommended for running multiple tools).
20GB free disk space (security tool images are large).
Supported platforms: Linux, macOS, Windows (with WSL2).

MCP Client:

Claude Desktop, Cursor, Kiro, or any MCP - compatible client.

Setup

Clone the repository:

git clone https://github.com/yourusername/mcpwner.git
cd mcpwner

Configure the server:

cp config/config.yaml.example config/config.yaml
# Edit config/config.yaml as needed

Start the services:
```
docker-compose up -d --build
```
Verify services are running:
```
docker-compose ps
```

Connect Your IDE

Once Docker containers are running, add MCPwner to your MCP client:

Configuration File Locations:

Claude Desktop: ~/Library/Application Support/Claude/claude_desktop_config.json (macOS).
Cursor/Kiro: mcp.json in your project or settings directory.

One - Click Install (requires Docker running):

Manual Configuration: Add the following to your MCP configuration file:

{
  "mcpServers": {
    "mcpwner": {
      "command": "docker",
      "args": ["exec", "-i", "mcpwner-server", "python", "src/server.py"],
      "env": {}
    }
  }
}

Restart your MCP client to load the new server configuration.

Scanning Local Projects

To scan projects from your host machine, mount them into the container by adding a volume in docker-compose.yaml:

services:
  mcpwner:
    volumes:
      - /path/to/your/projects:/mnt/projects:ro

Then use the create_workspace tool with:

source_type="local"
source="/mnt/projects/my-project"

💻 Usage Examples

Scan a GitHub Repository for Secrets

"Scan https://github.com/example/repo for secrets"
→ MCPwner runs Gitleaks, TruffleHog, detect - secrets and correlates findings

Security Audit

"Run a security audit on my Python project"
→ MCPwner runs Bandit (SAST), OSV - Scanner (SCA), and secrets scanning

Attack Path Analysis

"Find vulnerabilities in the authentication module"
→ MCPwner runs CodeQL queries, cross - references with secrets and SCA results

📚 Documentation

Integrated Tools

Static Application Security Testing (SAST) Scanning Tools


CodeQL	Psalm	Gosec	Bandit	Semgrep


Brakeman	PMD

Secrets Scanning Tools


Gitleaks	TruffleHog	detect-secrets	Whispers	Hawk-Eye

Software Composition Analysis (SCA) Tools


Grype & Syft	OSV-Scanner	Retire.js

Future Tools

The following tools are planned for future releases:

Reconnaissance

Amass, Subfinder, httpx, Katana, gau, Nmap, Arjun, FFUF, Akto

Dynamic Application Security Testing (DAST)

OWASP ZAP, Wapiti, Nikto, SQLmap, SSRFmap, SSTImap, Nuclei, Dalfox, XSStrike, jwt_tool, Interactsh, Frida

Infrastructure & IaC Security

Prowler, Checkov, KICS, Terrascan, TFSec, Hadolint

Exploitation & PoC Development

Metasploit, Interactsh

Data Persistence

MCPwner automatically persists workspace and CodeQL database metadata across container restarts using file - based storage in the shared Docker volume (/workspaces/.metadata/). No configuration required - the system loads existing data on startup and saves after every operation using atomic writes to prevent corruption.

Workspace Cleanup Control: The cleanup_workspace tool provides granular control:

delete_files=True, delete_metadata=False - Free disk space but preserve workspace history (recommended).
delete_files=True, delete_metadata=True - Complete removal of workspace and metadata.
delete_files=False, delete_metadata=True - Remove from list but keep files on disk.

Backup:

# Backup entire workspaces volume
docker run --rm -v mcpwner_workspaces:/data -v $(pwd):/backup \
  alpine tar czf /backup/workspaces-backup.tar.gz /data

# Restore volume
docker run --rm -v mcpwner_workspaces:/data -v $(pwd):/backup \
  alpine tar xzf /backup/workspaces-backup.tar.gz -C /

Architecture

MCPwner uses HTTP - based communication between containers to support future remote deployments. While currently optimized for local usage, the architecture can be adapted for remote server deployments with minimal modifications.

Design Principles:

Container isolation for security tool execution.
Standardized output formats for LLM consumption (SARIF/JSON).
Extensible plugin architecture for new tools.
Stateless API (memories are managed by user).

Architecture Overview:

graph LR
    subgraph IDE[" "]
        LLM[🤖<br/>LLM]
        Client[MCP Client]
        LLM -.-> Client
    end

    Server[MCPwner Server]

    SAST[SAST Tools]
    Secrets[Secrets Scanning]
    SCA[SCA Tools]
    DAST[DAST Tools]
    Recon[Reconnaissance]
    IaC[IaC Security]
    Exploit[Exploitation]
    CodeQL[CodeQL Service]
    Linguist[Language Detection]

    Client -->|JSON-RPC 2.0| Server
    Server -->|HTTP| SAST
    Server -->|HTTP| Secrets
    Server -->|HTTP| SCA
    Server -->|HTTP| DAST
    Server -->|HTTP| Recon
    Server -->|HTTP| IaC
    Server -->|HTTP| Exploit
    Server -->|HTTP| CodeQL
    Server -->|HTTP| Linguist

    style LLM fill:#7C3AED,stroke:#5B21B6,stroke-width:3px,color:#fff
    style Client fill:#4A90E2,stroke:#2E5C8A,stroke-width:3px,color:#fff
    style Server fill:#F5A623,stroke:#C17D11,stroke-width:3px,color:#fff
    style SAST fill:#E74C3C,stroke:#C0392B,stroke-width:2px,color:#fff
    style Secrets fill:#9B59B6,stroke:#7D3C98,stroke-width:2px,color:#fff
    style SCA fill:#1ABC9C,stroke:#16A085,stroke-width:2px,color:#fff
    style DAST fill:#E91E63,stroke:#C2185B,stroke-width:2px,color:#fff
    style Recon fill:#00BCD4,stroke:#0097A7,stroke-width:2px,color:#fff
    style IaC fill:#8BC34A,stroke:#689F38,stroke-width:2px,color:#fff
    style Exploit fill:#FF5722,stroke:#E64A19,stroke-width:2px,color:#fff
    style CodeQL fill:#E67E22,stroke:#CA6F1E,stroke-width:2px,color:#fff
    style Linguist fill:#3498DB,stroke:#2874A6,stroke-width:2px,color:#fff
    style IDE fill:none,stroke:#ddd,stroke-width:2px,stroke-dasharray: 5 5

Workflows

Data Flow - Analysis Results:

sequenceDiagram
    participant LLM as 🤖 LLM
    participant MCP as MCP Client
    participant Server as MCPwner Server
    participant Tools as Security Tools

    LLM->>MCP: Request security scan
    MCP->>Server: Execute scan command
    Server->>Tools: Run analysis
    Tools-->>Server: Raw results
    Server-->>MCP: SARIF/JSON reports
    MCP-->>LLM: Structured findings
    Note over LLM: Correlate vulnerabilities<br/>Generate insights<br/>Suggest remediation

Available MCP Tools

MCPwner exposes the following tools through the MCP interface:

Workspace Management:

create_workspace - Initialize scanning workspace from local path, Git URL, or GitHub repo.
list_workspaces - List all available workspaces.
cleanup_workspace - Remove workspace and associated data.

SAST (Static Analysis):

sast_scan - Run static analysis tools (CodeQL, Semgrep, Bandit, Gosec, etc.).
sast_get_report - Retrieve SAST scan results.
sast_list_tools - List available SAST tools.

Secrets Detection:

secrets_scan - Run secrets scanning tools (Gitleaks, TruffleHog, etc.).
secrets_get_report - Retrieve secrets scan results.
secrets_list_tools - List available secrets scanning tools.

SCA (Software Composition Analysis):

sca_scan - Analyze dependencies for vulnerabilities (Grype, OSV - Scanner, etc.).
sca_get_report - Retrieve SCA scan results.
sca_list_tools - List available SCA tools.

CodeQL Specific:

codeql_detect_languages - Detect languages in codebase.
codeql_create_database - Create CodeQL database for analysis.
codeql_list_databases - List available CodeQL databases.
codeql_list_query_packs - List available query packs.
codeql_execute_query - Run specific CodeQL queries.

Health & Monitoring:

health_check - Check server and tool availability.
list_tools - List all available tools and their status.

🔧 Technical Details

The architecture of MCPwner is designed to be modular and extensible. It uses HTTP - based communication between containers, which allows for easy integration of new security tools. The standardized output formats (SARIF/JSON) ensure that the results can be easily consumed by LLM - based AI assistants. The multi - agent architecture enables specialized agents to collaborate across different security phases, enhancing the overall efficiency and effectiveness of security research.

📄 License

This project is licensed under the Apache 2.0 License.

Contributing

Contributions are welcome! Please review the contribution guidelines before submitting pull requests.

Priority Areas:

Testing infrastructure (e2e and unit tests).
Container lifecycle management and optimization.
Multi - stage Docker builds for reduced image sizes.
Enhanced error handling and timeout mechanisms.
Additional security tool integrations.

Contribution Guidelines:

Submit focused pull requests with manageable scope.
Include tests for new features.
Follow existing code style and patterns.
Update documentation as needed.

See the Future Tools section for our development roadmap.

Security Considerations

MCPwner executes security tools that may perform intrusive operations. Only use on systems and codebases you own or have explicit permission to test - unauthorized access is illegal. Restrict MCP server access to authorized users and consider network isolation for production deployments. Review tool configurations before running scans as some tools can generate significant network traffic or system load. Log tool execution and results, keeping in mind that security scans can trigger alerts in monitoring systems. Follow responsible disclosure practices when reporting vulnerabilities discovered using MCPwner. Keep Docker images updated and scan containers for vulnerabilities regularly. Never commit API keys, tokens, or credentials to configuration files - use environment variables or secret management systems instead.