This repository contains Model Context Protocol (MCP) server implementations for various security testing tools, making them accessible through a standardized interface.
| Tool | Description | Detailed Documentation |
|---|---|---|
| Amass | Advanced subdomain enumeration and reconnaissance tool | Amass MCP Documentation |
| Alterx | Pattern-based wordlist generator for subdomain discovery | Alterx MCP Documentation |
| Arjun | Run Arjun to discover hidden HTTP parameters | Arjun MCP Documentation |
| Assetfinder | Passive subdomain discovery tool based on Tomnomnom’s Assetfinder | Assetfinder MCP Documentation |
| Certificate Search (crt.sh) | Subdomain discovery tool using SSL certificate logs | Certificate Search MCP Documentation |
| FFUF | Web content fuzzing tool for discovering hidden files and directories | FFUF MCP Documentation |
| HTTP Headers Security | Analyzer for HTTP security headers against OWASP standards | HTTP Headers MCP Documentation |
| httpx | Fast and multi-purpose HTTP toolkit for port scanning. | httpx MCP Documentation |
| Katana | Fast and flexible web crawler with JS parsing and hybrid crawling support | Katana MCP Documentation |
| Masscan | Fast port scanner for large-scale network discovery | Masscan MCP Documentation |
| MobSF | Mobile security framework for analyzing mobile applications | MobSF MCP Documentation |
| Nmap | Comprehensive network scanning tool for service and vulnerability discovery | Nmap MCP Documentation |
| Nuclei | Vulnerability scanner using custom templates | Nuclei MCP Documentation |
| Scout Suite | Cloud security auditing tool for assessing configurations across multiple services | Scout Suite MCP Documentation |
| SSLScan | SSL/TLS configuration analyzer for security assessment | SSLScan MCP Documentation |
| shuffledns | High-speed and customizable DNS brute-forcing and resolution tool | shuffledns MCP Documentation |
| SQLmap | Advanced SQL injection detection and exploitation tool | SQLmap MCP Documentation |
| Waybackurls | Tool for retrieving historical URLs from the Wayback Machine | Waybackurls MCP Documentation |
Generates custom wordlists for subdomain discovery using pattern-based permutations.
Advanced reconnaissance tool for subdomain enumeration and intelligence gathering with both passive and active modes.
Discovers hidden HTTP parameters on web applications by scanning URLs, supporting custom wordlists, multiple methods, and adjustable scanning speeds.
Discovers subdomains related to a given domain using passive enumeration techniques. Integrates Tomnomnom’s Assetfinder into the MCP ecosystem for fast and reliable reconnaissance.
Discovers subdomains by querying SSL certificate transparency logs without active scanning.
URL-based fuzzing tool with support for all FFUF command line arguments.
Analyzes HTTP response headers against OWASP security standards with recommendations.
Performs high-speed probing of discovered subdomains to validate alive hosts, fetch response details, and enrich reconnaissance data without heavy scanning.
Performs fast and customizable web crawling to discover endpoints, scripts, and hidden paths. Supports JavaScript parsing, depth control, and hybrid crawling with headless browsers to enrich reconnaissance and automation workflows.
Fast port scanning tool for target-based port discovery across networks.
Mobile application security testing framework for Android, iOS, and Windows applications.
Full-featured network scanner with detailed service fingerprinting and vulnerability detection.
Template-based vulnerability scanner with an extensive library of security checks.
Performs a multi-service cloud security audit by analyzing cloud configurations and highlighting potential misconfigurations and risks based on best practices.
High-speed DNS brute-forcing and mass subdomain resolution tool to quickly discover valid subdomains using custom resolvers and wordlists.
SQL injection testing tool with comprehensive capabilities for vulnerability discovery.
SSL/TLS configuration analyzer for identifying weak ciphers and security misconfigurations.
Retrieves historical URLs from the Wayback Machine to discover forgotten endpoints.
- cero
- commix
- Corsy
- CrackMapExec
- crlfuzz
- dalfox
- dnsrecon
- feroxbuster
- gau
- getJS
- github-endpoints
- github-subdomains
- gobuster
- gospider
- gowitness
- hakrawler
- kiterunner
- medusa
- naabu
- ParamSpider
- puredns
- s3scanner
- tlsx
- wafw00f
- webscreenshot
- wpscan
- ...
The project uses TypeScript and the Model Context Protocol SDK. To contribute:
- Fork the repository
- Create a feature branch
- Make your changes
- Submit a pull request
For installation instructions for each tool, please refer to the individual documentation linked in the table above.
Each tool has specific parameters and usage instructions. For detailed information, see the documentation for the specific tool you want to use.