Security MCP Repositories

Audits npm package dependencies for security vulnerabilities using remote npm registry integration for real-time checks.

MCP server to access [Intruder](https://www.intruder.io/), helping you identify, understand, and fix security vulnerabilities in your infrastructure.

Interface with the Hedera Testnet Mirror Node API to create wallets, check account balances, build transactions, and send signed transactions. The server is designed for interaction with the Hedera network while ensuring robust input validation.

Manage users and realms in Keycloak, including creating and deleting users, as well as listing available realms and users within specific realms.

MCP server for integrating Ghidra with AI assistants. This plugin enables binary analysis, providing tools for function inspection, decompilation, memory exploration, and import/export analysis via the Model Context Protocol.

Manage access to MCP servers with real-time control over LLM activities, including message logging and approval capabilities. Effortlessly switch between multiple MCP server configurations without manual file management.

A Rust-based MCP server bridging Wazuh SIEM with AI assistants, providing real-time security alerts and event data for enhanced contextual understanding.

Enables AI assistants to execute network administration and diagnostic commands securely within a Docker container sandbox. Provides controlled access to networking tools and file operations with enterprise-grade security features, including session management and audit logging.

Connects AI models to AWS services using Single Sign-On authentication, facilitating secure management of AWS resources and execution of AWS CLI commands directly from AI assistants.

Manage and enhance authentication processes through secure credential management, multi-protocol support, and real-time threat detection.

Manage Palo Alto firewalls through their REST API, enabling system information retrieval, firewall upgrades, content updates, and certificate management. Streamlines operational tasks and ensures security updates for firewall systems.

Enable natural language interaction with Binalyze AIR systems to manage assets, acquisition profiles, and organizations. Query and list AIR data seamlessly through any MCP client, utilizing AI-driven context access.

Retrieves comprehensive vulnerability data, including CVE details, CWEs, CVSS scores, and EPSS scores to evaluate exploitation likelihood. Facilitates integration with developer tools for enhanced cybersecurity workflows.

[BurtTheCoder/mcp-dnstwist](https://github.com/BurtTheCoder/mcp-dnstwist) 📇 🪟 ☁️ - MCP server for dnstwist, a powerful DNS fuzzing tool that helps detect typosquatting, phishing, and corporate espionage.

Integrates Wazuh security data with large language models by retrieving real-time alerts and transforming them into standardized MCP-compliant messages. Exposes an HTTP endpoint for seamless interaction with applications while ensuring secure authentication.

Query network asset information using ZoomEye dorks, while benefiting from a caching mechanism and advanced error handling to enhance data retrieval capabilities.

Manage health records securely with a user-controlled platform, enabling selective sharing of health data while maintaining privacy through end-to-end encryption.

Provides tools for code review and security analysis using Joern, facilitating efficient code inspection processes based on static code analysis.

Analyze memory dumps using natural language queries to facilitate forensic investigations, reducing the need for technical expertise while accelerating the analysis process and improving cybersecurity responses.

A platform for conducting advanced network security tasks, including vulnerability analysis, traffic inspection, and attack investigation, through interactive dialogues with a specialized AI model. Designed for security professionals, it offers intelligent assistance for understanding and mitigating cybersecurity threats.

Provides a secure JavaScript execution environment with configurable execution time and memory limits, enabling the safe execution of JavaScript code in isolation.

Analyze binaries efficiently using Binary Ninja's powerful analysis capabilities through the MCP framework. Connect to Cline for enhanced functionality and seamless integration.

Integrates GitHub Advanced Security features into development environments, enabling management of dependabot alerts, secret scanning alerts, and code scanning alerts directly from tools. Enhances repository security by providing streamlined access to critical alerts and insights.

Check IP reputations and access comprehensive malicious IP databases. Integrates real-time data from a global honeypot network to improve threat detection abilities.

Execute shell commands securely with whitelisted options, ensuring controlled and monitored execution for machine learning applications.

Offers advanced capabilities for reverse engineering and security testing, enabling flexible network analysis, traffic monitoring, and automated workflows geared towards cybersecurity tasks.

Interact with Google's Chronicle Security Operations suite to enhance security monitoring by searching for security events, retrieving alerts, and looking up entity information.

Integrate Apktool with LLMs to enable real-time reverse engineering of Android APKs. Perform decompilation, code review, and AI-driven analysis while managing resources and vulnerabilities.

Provides tools for open source intelligence investigations, enabling WHOIS lookups, Nmap scans, DNS reconnaissance, and domain permutation checks. Supports executing multiple OSINT tasks in parallel for a comprehensive data analysis.

Security-focused MCP server that provides safety guidelines and content analysis for AI agents.