mcp-for-security

cyproxio

264

MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. Integrate security testing and penetration testing into AI workflows.

#ai-assistants #ai-security #cybersecurity #hacking-tools #mcp #model-context-protocol #pentesting #security-automation #security-testing #security-tools #web-security #security-integrations #mcp-pentest #mcp-security #mcp-ai

Overview

mcp-for-security Introduction

mcp-for-security is a collection of Model Context Protocol servers designed for popular security tools such as SQLMap, FFUF, NMAP, and Masscan. It aims to integrate security testing and penetration testing into AI workflows through a standardized interface.

How to Use

To use mcp-for-security, users can access the various security tools via their respective MCP server implementations. Detailed documentation for each tool is provided, allowing users to understand how to implement and utilize these tools effectively.

Key Features

Key features of mcp-for-security include a standardized interface for multiple security testing tools, ease of integration into existing workflows, and support for a variety of tools that cover different aspects of security testing, from network scanning to web application analysis.

Where to Use

mcp-for-security can be used in various fields including cybersecurity, penetration testing, vulnerability assessment, and security research. It is suitable for organizations looking to enhance their security posture through automated testing.

Use Cases

Use cases for mcp-for-security include automating security assessments in web applications, conducting network vulnerability scans, performing subdomain enumeration, and integrating security testing into CI/CD pipelines for continuous security monitoring.

Content

# MCP for Security Tools This repository contains Model Context Protocol (MCP) server implementations for various security testing tools, making them accessible through a standardized interface. ## Tools ### FFUF MCP Server A server implementation that wraps the FFUF fuzzing tool, allowing it to be used through the MCP interface. #### Features - URL-based fuzzing - Support for all FFUF command line arguments #### Parameters - `url`: Target URL to fuzz - `ffuf_args`: Array of additional FFUF arguments #### Usage ```bash ffuf-mcp <ffuf binary> ``` #### Claude Configuration ```json "ffuf": { "command": "node", "args": [ "/path/to/build/index.js", "ffuf" ] } ``` ### SQLmap MCP Server A server implementation that wraps the SQLmap SQL injection testing tool, allowing it to be used through the MCP interface. #### Features - URL-based SQL injection testing - Support for all SQLmap command line arguments - Error handling and status reporting - Comprehensive SQL injection testing capabilities #### Parameters - `url`: Target URL to test for SQL injection - `sqlmap_args`: Array of additional SQLmap arguments #### Usage ```bash sqlmap-mcp <sqlmap binary or python3 sqlmap> ``` #### Claude Configuration ```json "sqlmap": { "command": "node", "args": [ "/path/to/build/index.js", "sqlmap" ] } ``` ### Masscan MCP Server A server implementation that wraps the Masscan tool, allowing it to be used through the MCP interface. #### Features - Target based Port Scanning - Support for all Masscan command line arguments - Error handling and status reporting #### Parameters - `target`: Target ip to scanning ports - `port`: Port nubmers to target ip - `masscan_args`: Array of additional masscan arguments #### Usage ```bash masscan-mcp <masscan> ``` #### Claude Configuration ```json "masscan": { "command": "node", "args": [ "/path/to/build/index.js", "masscan" ] } ``` ### nmap MCP Server A server implementation that wraps the nmap scanning tool, allowing it to be used through the MCP interface. #### Features - Target based port scanning - Support for all nmap command line arguments #### Parameters - `target`: Target ìp to fuzz - `nmap_args`: Array of additional nmap arguments #### Usage ```bash nmap-mcp <nmap binary> ``` #### Claude Configuration ```json "nmap": { "command": "node", "args": [ "/path/to/build/index.js", "nmap" ] } ``` ### Mobsf MCP Server A server implementation that wraps the Mobsf tool, allowing it to be used through the MCP interface. #### Features - MobSF functionality exposed through MCP - Simple configuration and setup - Easy integration with other MCP-compatible tools and systems - Standardized input/output handling - Support for Android (APK), iOS (IPA), and Windows (APPX) mobile applications #### Parameters - `base_url`: The MobSF server URL (e.g., `http://localhost:8000`) - `api_key `: Your MobSF API key #### Usage ```bash mobsf-mcp <base_url> <api_key> ``` #### Claude Configuration ```json "mobsf": { "command": "node", "args": [ "/path/to/build/index.js", "http://127.0.0.1:8000", "<api key>" ] } ``` ## TO-DO Tools - amass - massdns - gowitness - nuclei - httpx - ... ## Development The project uses TypeScript and the Model Context Protocol SDK. To contribute: 1. Fork the repository 2. Create a feature branch 3. Make your changes 4. Submit a pull request ## License

mcp-for-security

Scan with WeChat to Share

Overview

mcp-for-security Introduction

How to Use

Key Features

Where to Use

Use Cases

Content

You Might Also Like

MarkItDown MCP

Github MCP

Context 7

tuui

MongoDB

mongodb-mcp-server