MCP Security Tools
MCP-SecurityTools 是一个专注于收录和更新网络安全领域 MCP 的开源项目,旨在汇总、整理和优化各类与 MCP 相关的安全工具、技术及实战经验。
What is MCP Security Tools?
MCP Security Tools is a Model Context Protocol (MCP) server that allows AI assistants like Claude, Cursor, and VS Code to mcp-securitytools 是一个专注于收录和更新网络安全领域 mcp 的开源项目,旨在汇总、整理和优化各类与 mcp 相关的安全工具、技术及实战经验。
MCP-SecurityTools 是一个专注于收录和更新网络安全领域 MCP 的开源项目,旨在汇总、整理和优化各类与 MCP 相关的安全工具、技术及实战经验。
This server falls under the Security category on MCPgee, the world's largest MCP server directory with 33,000+ servers.
Features
- MCP-SecurityTools 是一个专注于收录和更新网络安全领域 MCP 的开源项目,旨在汇总、整理和优化各类与
Use Cases
Maintainer
Works with
Installation
Manual Installation
npx mcp-securitytoolsConfiguration
Configuration Details
claude_desktop_config.json
Performance
Response Metrics
Resource Usage
How to Set Up and Use MCP Security Tools
MCP-SecurityTools is an open-source collection that aggregates, categorizes, and optimizes cybersecurity-focused MCP servers, bringing tools like Shodan, FOFA, ZoomEye, VirusTotal, and cloud security scanners under one curated repository. Rather than a single deployable server, it is a hub of security MCP integrations that AI agents can use for network asset discovery, threat intelligence, vulnerability scanning, and enterprise information gathering. Security researchers and red teamers use it to chain multiple security APIs together through an AI assistant instead of switching between disparate tools.
Prerequisites
- Go 1.21+ (for Go-based tools like uncover-mcp and ENScan_GO-MCP)
- Node.js 18+ and npm (for VirusTotal-MCP and other JavaScript tools)
- Python 3.9+ and pip (for ZoomEye-MCP)
- API keys for the services you intend to use: SHODAN_API_KEY, FOFA_EMAIL/FOFA_KEY, VIRUSTOTAL_API_KEY, ZOOMEYE_API_KEY
- An MCP-compatible client such as Claude Desktop, Cline, or Cherry Studio
Choose the security tool(s) you need
Each sub-tool in MCP-SecurityTools targets a different use case. uncover-mcp wraps FOFA/Shodan for asset discovery, VirusTotal-MCP handles threat analysis, ZoomEye-MCP performs network dork searches, and cloudsword-MCP assesses cloud security posture. Pick the one matching your workflow.
Install uncover-mcp (FOFA/Shodan asset discovery)
Clone and build the Go binary for uncover-mcp to enable FOFA and Shodan searches through your AI client.
git clone https://github.com/Co5mos/uncover-mcp
cd uncover-mcp
go build -o uncover-mcp ./cmd/uncover-mcpInstall VirusTotal-MCP (threat intelligence)
Clone the VirusTotal MCP server and install its npm dependencies to enable file, URL, and IP reputation lookups.
git clone https://github.com/BurtTheCoder/mcp-virustotal.git
cd mcp-virustotal
npm install && npm run buildInstall ZoomEye-MCP (network asset search)
Install the ZoomEye MCP server via pip to enable dork-based network asset discovery.
pip install mcp-server-zoomeyeObtain required API keys
Register for accounts and collect API keys from each service you plan to use: Shodan (shodan.io), FOFA (fofa.info), VirusTotal (virustotal.com), and ZoomEye (zoomeye.org). Store these securely.
Configure your MCP client with the chosen server
Add one or more security tool servers to your MCP client config. The example below shows VirusTotal-MCP; replace env keys and paths as needed for other tools.
{
"mcpServers": {
"virustotal-mcp": {
"command": "node",
"args": ["/path/to/mcp-virustotal/build/index.js"],
"env": {
"VIRUSTOTAL_API_KEY": "your_virustotal_api_key"
}
}
}
}MCP Security Tools Examples
Client configuration (VirusTotal-MCP)
Add VirusTotal-MCP to your MCP client to enable threat intelligence queries via your AI assistant.
{
"mcpServers": {
"virustotal-mcp": {
"command": "node",
"args": ["/path/to/mcp-virustotal/build/index.js"],
"env": {
"VIRUSTOTAL_API_KEY": "your_virustotal_api_key"
}
},
"zoomeye-mcp": {
"command": "python",
"args": ["-m", "mcp_server_zoomeye"],
"env": {
"ZOOMEYE_API_KEY": "your_zoomeye_api_key"
}
}
}
}Prompts to try
Once a security tool MCP server is connected, use these natural language prompts with your AI assistant.
- "Search Shodan for all Apache servers exposing port 8080 in Germany"
- "Check if this file hash is malicious on VirusTotal: d41d8cd98f00b204e9800998ecf8427e"
- "Use ZoomEye to find public-facing Redis instances with no authentication"
- "Scan for subdomains and related assets for example.com using ENScan"
- "What CVEs are currently exploited in the wild according to VirusTotal threat feeds?"Troubleshooting MCP Security Tools
go build fails with missing module errors
Run 'go mod download' inside the cloned repo directory before building. Ensure you have Go 1.21+ installed and GOPATH is correctly set.
API calls return 403 or quota exceeded errors
Free-tier accounts on FOFA, Shodan, and ZoomEye have strict rate limits. Verify your API key tier. For VirusTotal, the free API is limited to 4 requests/minute — add delay between queries or upgrade your plan.
MCP client does not list the security tools after configuration
Check that the binary path in 'args' is absolute and the binary is executable ('chmod +x uncover-mcp' on Unix). Restart the MCP client after any config change.
Frequently Asked Questions about MCP Security Tools
What is MCP Security Tools?
MCP Security Tools is a Model Context Protocol (MCP) server that mcp-securitytools 是一个专注于收录和更新网络安全领域 mcp 的开源项目,旨在汇总、整理和优化各类与 mcp 相关的安全工具、技术及实战经验。 It connects AI assistants to external tools and data sources through a standardized interface.
How do I install MCP Security Tools?
Follow the installation instructions on the MCP Security Tools GitHub repository. Clone the repo, install dependencies, and add the server config to your AI client.
Which AI clients work with MCP Security Tools?
MCP Security Tools works with all major MCP-compatible AI clients including Claude Desktop, Claude Code, Cursor, VS Code (GitHub Copilot), Windsurf, and Cline.
Is MCP Security Tools free to use?
Yes, MCP Security Tools is open source and available under the MIT license. You can use it freely in both personal and commercial projects.
MCP Security Tools Alternatives — Similar Security Servers
Looking for alternatives to MCP Security Tools? Here are other popular security servers you can use with Claude, Cursor, and VS Code.
Casdoor
★ 13.6kAn open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI supporting OpenClaw, MCP, OAuth, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD
ghidraMCP
★ 9.0kAn Model Context Protocol server that enables LLMs to autonomously reverse engineer applications by exposing Ghidra's decompilation and analysis tools. It allows AI agents to list code structures, rename methods, and analyze binaries directly through
HexStrike AI
★ 8.9kHexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug bounty automation, and security research. Seamlessly b
IDA Pro MCP
★ 8.7kEnables AI-assisted reverse engineering in IDA Pro by providing tools to analyze binaries, decompile functions, manage comments, search patterns, and interact with the IDA database through natural language.
Anthropic Cybersecurity Skills
★ 6.6k754 structured cybersecurity skills for AI agents · Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platform
Hooker
★ 5.1k🔥🔥 hooker is a Frida-based reverse engineering toolkit for Android. It offers a user-friendly CLI, universal scripts, auto hook generation, memory roaming to detect activities/services, one-click SOCKS5 proxy setup, Frida JustTrustMe, and BoringSSL u
Browse More Security MCP Servers
Explore all security servers available in the MCPgee directory. Each server includes setup guides for Claude, Cursor, and VS Code.
Set Up MCP Security Tools in Your Editor
Choose your AI client for step-by-step setup instructions.
Quick Config Preview
Add this to your claude_desktop_config.json or .cursor/mcp.json
Ready to use MCP Security Tools?
Browse our complete directory of 33,000+ MCP servers, read setup guides for your editor, and start building with the Model Context Protocol.