Roadrecon
Claude MCP server to perform analysis on ROADrecon data
What is Roadrecon?
Roadrecon is a Model Context Protocol (MCP) server that allows AI assistants like Claude, Cursor, and VS Code to claude mcp server to perform analysis on roadrecon data
Claude MCP server to perform analysis on ROADrecon data
This server falls under the Security category on MCPgee, the world's largest MCP server directory with 33,000+ servers.
Features
- Claude MCP server to perform analysis on ROADrecon data
Use Cases
Maintainer
Works with
Installation
Manual Installation
npx roadrecon-mcp-serverConfiguration
Configuration Details
claude_desktop_config.json
Performance
Response Metrics
Resource Usage
How to Set Up and Use Roadrecon
The Roadrecon MCP Server (roadrecon_mcp_server) is a Python MCP server purpose-built for AI-assisted Azure tenant security analysis using data gathered by the ROADrecon enumeration tool. It exposes nine specialized analysis functions covering privileged identity, MFA gaps, stale accounts, application secrets, Privileged Identity Management configuration, service principal credentials, and conditional access policy review. Security teams and red teamers use it to ask natural-language questions about an Azure tenant's attack surface after completing a ROADrecon enumeration.
Prerequisites
- Python 3.8 or higher with pip installed
- ROADrecon installed and tenant data already gathered (pip install roadrecon && roadrecon gather)
- ROADrecon web GUI running and accessible (default: http://localhost:5000)
- An MCP-compatible client such as Claude Desktop or Claude Code
Clone the server repository
Clone the roadrecon_mcp_server repository from GitHub.
git clone https://github.com/atomicchonk/roadrecon_mcp_server.git
cd roadrecon_mcp_serverInstall Python dependencies
Install the required libraries from the requirements file.
pip install -r requirements.txtGather Azure tenant data with ROADrecon
Run ROADrecon against your target Azure tenant to populate the database. Then start the web GUI so the MCP server can query it.
pip install roadrecon
roadrecon gather --username [email protected]
roadrecon guiSet the ROADRECON_URL environment variable
Configure the URL where the ROADrecon web instance is listening. Skip this if using the default http://localhost:5000.
export ROADRECON_URL=http://localhost:5000Add the server to your MCP client
Configure your MCP client to launch the Python server. Use the absolute path to the roadrecon_mcp_server.py script.
Begin Azure security analysis
Connect your AI assistant and start querying. The nine analysis tools map directly to common Azure security audit questions.
Roadrecon Examples
Client configuration
Example claude_desktop_config.json for the ROADrecon MCP server. Update the path and Python interpreter as needed for your environment.
{
"mcpServers": {
"roadrecon-mcp-server": {
"command": "python",
"args": ["/absolute/path/to/roadrecon_mcp_server/roadrecon_mcp_server.py"],
"env": {
"ROADRECON_URL": "http://localhost:5000"
}
}
}
}Prompts to try
Example prompts that map to the nine specialized Azure security analysis tools.
- "Who are the most privileged users in this Azure tenant and what roles do they hold?"
- "Which accounts don't have MFA enabled and what is the risk exposure?"
- "Find all applications that have stored client secrets and how long those secrets have been active"
- "Identify accounts that haven't signed in for over 60 days"
- "Is Privileged Identity Management (PIM) properly configured for all admin roles?"
- "Analyze legacy authentication protocols in use and which accounts could bypass MFA through them"Troubleshooting Roadrecon
Server exits immediately with a connection error to ROADrecon
Confirm the ROADrecon GUI is running ('roadrecon gui' should be running in a separate terminal) and accessible at the URL in ROADRECON_URL. Use 'curl http://localhost:5000' to verify the GUI responds before starting the MCP server.
Analysis tools return no data or empty results
Run 'roadrecon gather' to populate the database before starting the MCP server. The gather step requires valid Azure credentials with at least Global Reader permissions. Check the ROADrecon database file exists and is not empty.
Python version compatibility error on startup
The server requires Python 3.8 or higher. Check your version with 'python --version'. If the system Python is older, use pyenv or specify an explicit Python 3.8+ interpreter in your MCP client configuration.
Frequently Asked Questions about Roadrecon
What is Roadrecon?
Roadrecon is a Model Context Protocol (MCP) server that claude mcp server to perform analysis on roadrecon data It connects AI assistants to external tools and data sources through a standardized interface.
How do I install Roadrecon?
Follow the installation instructions on the Roadrecon GitHub repository. Clone the repo, install dependencies, and add the server config to your AI client.
Which AI clients work with Roadrecon?
Roadrecon works with all major MCP-compatible AI clients including Claude Desktop, Claude Code, Cursor, VS Code (GitHub Copilot), Windsurf, and Cline.
Is Roadrecon free to use?
Yes, Roadrecon is open source and available under the MIT license. You can use it freely in both personal and commercial projects.
Roadrecon Alternatives — Similar Security Servers
Looking for alternatives to Roadrecon? Here are other popular security servers you can use with Claude, Cursor, and VS Code.
Casdoor
★ 13.6kAn open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI supporting OpenClaw, MCP, OAuth, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD
ghidraMCP
★ 9.0kAn Model Context Protocol server that enables LLMs to autonomously reverse engineer applications by exposing Ghidra's decompilation and analysis tools. It allows AI agents to list code structures, rename methods, and analyze binaries directly through
HexStrike AI
★ 8.9kHexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug bounty automation, and security research. Seamlessly b
IDA Pro MCP
★ 8.7kEnables AI-assisted reverse engineering in IDA Pro by providing tools to analyze binaries, decompile functions, manage comments, search patterns, and interact with the IDA database through natural language.
Anthropic Cybersecurity Skills
★ 6.6k754 structured cybersecurity skills for AI agents · Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platform
Hooker
★ 5.1k🔥🔥 hooker is a Frida-based reverse engineering toolkit for Android. It offers a user-friendly CLI, universal scripts, auto hook generation, memory roaming to detect activities/services, one-click SOCKS5 proxy setup, Frida JustTrustMe, and BoringSSL u
Browse More Security MCP Servers
Explore all security servers available in the MCPgee directory. Each server includes setup guides for Claude, Cursor, and VS Code.
Set Up Roadrecon in Your Editor
Choose your AI client for step-by-step setup instructions.
Quick Config Preview
Add this to your claude_desktop_config.json or .cursor/mcp.json
Ready to use Roadrecon?
Browse our complete directory of 33,000+ MCP servers, read setup guides for your editor, and start building with the Model Context Protocol.