Externalattacker MCP

ExternalAttacker is an AI security tool that combines automated scanning with natural language processing. It provides external attack surface management and reconnaissance functions through the MCP protocol, supporting multiple scan types and tool integrations.

Security Developer tools #Security scanning #AI tool #Attack surface management .Python

rating : 2.5 points

downloads : 55

update time : 2025-04-29

What is ExternalAttacker?

ExternalAttacker is an innovative security tool that combines AI natural language processing with professional security scanning tools. Through simple English instructions, you can automatically perform complex external attack surface scanning and vulnerability discovery tasks.

How to use ExternalAttacker?

Simply install the necessary dependencies, start the server, and then describe your scanning requirements in natural language. The system will automatically convert your requirements into professional scanning commands and execute them.

Applicable scenarios

Suitable for security researchers, penetration testers, and system administrators for: external asset discovery, vulnerability assessment, security monitoring, and attack surface management.

Main features

Natural language interfaceDescribe your scanning requirements in ordinary English without memorizing complex commands

Subdomain discoveryAutomatically discover all subdomains of the target domain using the subfinder tool

Port scanningIdentify open ports and services of the target system through the naabu tool

HTTP service analysisAnalyze detailed information and potential vulnerabilities of Web services using the httpx tool

CDN detectionIdentify whether the target uses a content delivery network through cdncheck

Advantages and limitations

Advantages

Perform professional-level scans without security expertise

Integrate multiple top - notch security tools in a unified interface

Lower the usage threshold through natural language

Automated workflows save time

Limitations

Require installing multiple dependencies and tools

The accuracy of scan results depends on the underlying tools

Complex scanning requirements may require multiple attempts to express

Some advanced functions still require command - line configuration

How to use

Install dependencies

Ensure that the system has Python 3.8+ and the Go language environment installed

Clone the repository

Get the ExternalAttacker source code

Install Python dependencies

Install the necessary Python libraries

Install Go tools

Install various security scanning tools

Start the service

Run the main program and access the Web interface

Usage examples

Subdomain discoveryDiscover all online assets of the target organization

Web service analysisEvaluate the security of the HTTP service of the target website

Frequently Asked Questions

Is it legal to use this tool?

What is the scanning speed?

Is programming knowledge required?

Related resources

Telegram community

Get the latest updates and technical support

ProjectDiscovery toolset

Understand the technical details of the underlying scanning tools

GitHub repository

Access the source code and issue tracking

🚀 External Attacker MCP Server

ExternalAttacker is a powerful integrated tool that combines automated scanning capabilities with a natural language interface for comprehensive external attack surface management and reconnaissance.

🔍 Automate external attack surface management with AI!
Scan domains, analyze infrastructure, and discover vulnerabilities using simple English commands.

🌏 What is ExternalAttacker?

ExternalAttacker integrates the following features:

Automated Scanning: A comprehensive set of external reconnaissance tools.
Model Context Protocol (MCP): An open protocol for creating custom AI tools.
Natural Language Processing: Transforms simple English queries into scanning commands.

📱 Community

Join our Telegram channel for updates, tips, and discussions:

Telegram: https://t.me/root_sec

✨ Features

Natural Language Interface: Run scans using simple English.
Comprehensive Scan Categories:
- 🌐 Subdomain discovery (subfinder)
- 🔢 Port scanning (naabu)
- 🌍 HTTP analysis (httpx)
- 🛡️ CDN detection (cdncheck)
- 🔐 TLS analysis (tlsx)
- 📁 Directory brute-forcing (ffuf, gobuster)
- 📝 DNS enumeration (dnsx)

📋 Prerequisites

Python 3.8 or higher.
Go programming language (for tool installation).
MCP client.

📦 Installation

Clone this repository:

git clone https://github.com/mordavid/ExternalAttacker-MCP.git
cd ExternalAttacker

Install Python dependencies:
```
pip install -r requirements.txt
```

Install required Go tools:

go install -v github.com/projectdiscovery/subfinder/v2/cmd/subfinder@latest
go install -v github.com/projectdiscovery/naabu/v2/cmd/naabu@latest
go install -v github.com/projectdiscovery/httpx/cmd/httpx@latest
go install -v github.com/projectdiscovery/cdncheck/cmd/cdncheck@latest
go install -v github.com/projectdiscovery/tlsx/cmd/tlsx@latest
go install -v github.com/ffuf/ffuf@latest
go install github.com/OJ/gobuster/v3@latest
go install -v github.com/projectdiscovery/dnsx/cmd/dnsx@latest

Run ExternalAttacker-App.py:

python ExternalAttacker-App.py
# Visit http://localhost:6991

Configure the MCP server:

"mcpServers": {
    "ExternalAttacker-MCP": {
        "command": "python",
        "args": [
            "<Your_Path>\\ExternalAttacker-MCP.py"
        ]
    }
}