Security MCP Repositories

Transforms natural language prompts into real-time domain, IP, and FQDN reconnaissance queries, accessing Censys data for enhanced cybersecurity investigations.

Analyze memory dumps to detect malware and perform memory forensics using a natural language interface, making the process accessible to users without specialized knowledge.

Provides real-time threat intelligence and detailed metadata about malware samples from Malware Bazaar for cybersecurity research. Enables retrieval and analysis of up-to-date malware sample data through various interaction tools.

Test and analyze API endpoints for security vulnerabilities, covering aspects like endpoint discovery, JWT token analysis, and TLS configuration. Includes tools for fuzzing, subdomain scanning, and security headers validation.

Collect user account information from various social networks and analyze URLs to gather public data, enhancing research capabilities for OSINT investigations.

Automate reverse engineering and binary analysis tasks using IDA Pro through a standardized interface. Execute scripts, retrieve binary information, and perform advanced analysis to enhance productivity in software analysis.

Implements security controls for Microsoft 365 by adhering to CISA Binding Operational Directive 25-01, focusing on Azure AD and Entra ID management and configuration.

MCP server for Thales CipherTrust Manager integration, enabling secure key management, cryptographic operations, and compliance monitoring through AI assistants.

Query and analyze Wazuh security logs stored in OpenSearch, providing detailed information on alerts and generating statistics. Visualize trends over time and enhance security monitoring with structured error handling and progress reporting.

Ingests and serves Swagger/OpenAPI specifications, facilitating automatic generation of tools from API endpoints while supporting real-time communication through Server-Sent Events. Provides various authentication methods to secure access to the underlying API.

Interact with the Tenable Nessus vulnerability scanner to perform vulnerability scanning and analysis. Start and monitor scans, retrieve results, and search for vulnerabilities using a standardized protocol.

Enables secure interaction with blockchain smart contracts, allowing AI assistants to read blockchain data and prepare transactions while keeping user control over private keys and transaction signing.

Provides file deletion capabilities, supporting both relative and absolute paths with smart path resolution and existence checks to ensure safe file removal.

Programmatically access BurpSuite's core functionalities to intercept, scan, and log HTTP traffic. Enables real-time vulnerability detection and comprehensive traffic analysis for security testing.

Manage and monitor authentication processes with secure credential management and support for multiple authentication protocols. Offers real-time threat detection and recommendations for project authentication setup.

Provides Intel TDX DCAP attestation verification capabilities via a REST API, managing agents, requests, and attestations while leveraging zero knowledge proofs for enhanced security. Facilitates cryptographic proofs of attestation verification in applications.

Execute commands securely within specified file system paths while managing environment variables and supporting cross-platform operations. Enables interaction with remote systems through command execution.

Provides standardized access to Shodan's internet scanning and reconnaissance capabilities, allowing users to query devices, services, DNS records, and vulnerabilities. Facilitates secure management of API keys and handles errors for reliable data retrieval.

A collection of specialized servers facilitating secure, compliant interaction with Amazon Web Services (AWS) resources. This tooling ensures that Large Language Model (LLM) applications operate within established security parameters, incorporating best practices derived from infrastructure-as-code development principles. It supports rigorous analysis of CDK deployments and adherence to security standards, reflecting the concept of protection from hostile or unwanted change in digital environments.

Execute shell commands securely by utilizing a whitelist, with the ability to provide standard input and receive comprehensive output from commands.

Scans code for bugs and enforces coding standards across more than 30 programming languages. Integrates into development workflows for improved security and compliance through powerful static analysis.

Performs scans and generates Software Bill of Materials (SBOM) in CycloneDX format, while identifying vulnerabilities in software dependencies. Facilitates integration with MCP clients for efficient scanning and reporting.

Analyzes Solana meme tokens to identify potential risks and avoid rug pulls by providing detailed risk assessments and structured outputs based on token data. Retrieves information such as name, symbol, market cap, price, supply, and audit status from the Solsniffer API.

Scans project directories for security vulnerabilities using Trivy and automatically updates vulnerable dependencies to secure versions, supporting multiple package managers like Python, Node.js, Ruby, and Go.

Enables autonomous reverse engineering of applications using Ghidra's analysis tools, facilitating decompilation, binary analysis, and method renaming automation. Integrates with various MCP clients to improve reverse engineering processes.

Integrate with the VirusTotal API to conduct comprehensive security analysis and fetch automatic relationship data related to files, URLs, and IP addresses. This functionality allows for seamless integration with MCP-compatible applications for malware detection and cybersecurity assessments.

Manage and monitor Palo Alto Networks firewalls and services via a unified API interface, facilitating firewall operations and policy management effectively.

Analyzes code repositories and conducts security assessments across various programming languages. It offers integrated scanning and reporting features for code quality and security posture enhancement, along with efficient Git operations.

MCP server that enables security professionals to interact with Panther's SIEM platform using natural language for writing detections, querying logs, and managing alerts.