Skip to main content
Glama

MCP Security Tools Suite

by Ap6pack
GitHub
Python
  • Apple
  • Linux
OverviewInspectNewEndpointsSchemaRelated ServersReviewsScore
Need Help?View Source CodeReport Issue

MCP Security Tools Suite

A collection of Model Context Protocol (MCP) servers for ethical security testing, attack surface management, and penetration testing workflows.

These tools are for authorized security testing only!

  • Always obtain explicit written permission before testing any systems
  • Follow responsible disclosure practices
  • Comply with all applicable laws and regulations
  • Never use these tools for malicious purposes
  • Respect rate limits and avoid causing service disruptions

📦 Components

1. Security Tools Server (security_server.py)

Core security assessment capabilities:

  • SSL certificate validation
  • CVE database queries
  • Security header analysis
  • DNS lookups and WHOIS
  • Breach database checking

2. ASM Server (asm_server.py)

Attack Surface Management features:

  • Subdomain enumeration
  • Technology identification
  • Attack surface mapping
  • Exposed service discovery
  • API endpoint enumeration

3. Threat Intelligence Server (Coming Soon)

  • IP reputation checking
  • IOC analysis
  • Threat feed integration
  • MITRE ATT&CK mapping

🚀 Installation

Prerequisites

# Python 3.8+ required python --version # Create virtual environment python -m venv mcp-security-env source mcp-security-env/bin/activate # On Windows: mcp-security-env\Scripts\activate # Install dependencies pip install mcp aiohttp dnspython python-whois ssl-checker

Optional Dependencies

# For advanced features pip install shodan censys masscan nmap-python

API Keys Setup

Create a .env file in your project directory:

# API Keys for enhanced functionality HIBP_API_KEY=your_have_i_been_pwned_key SHODAN_API_KEY=your_shodan_api_key VT_API_KEY=your_virustotal_api_key CENSYS_API_ID=your_censys_id CENSYS_API_SECRET=your_censys_secret

🔧 Configuration

For Claude Desktop

  1. Locate your Claude configuration file:
    • macOS: ~/Library/Application Support/Claude/claude_desktop_config.json
    • Windows: %APPDATA%\Claude\claude_desktop_config.json
    • Linux: ~/.config/Claude/claude_desktop_config.json
  2. Add the MCP servers:
{ "mcpServers": { "security-tools": { "command": "python", "args": ["/absolute/path/to/security_server.py"], "env": { "HIBP_API_KEY": "your-api-key" } }, "asm-tools": { "command": "python", "args": ["/absolute/path/to/asm_server.py"] } } }
  1. Restart Claude Desktop

For Custom Clients

import subprocess import json # Start MCP server process = subprocess.Popen( ["python", "security_server.py"], stdin=subprocess.PIPE, stdout=subprocess.PIPE, stderr=subprocess.PIPE ) # Send requests via JSON-RPC request = { "jsonrpc": "2.0", "method": "tools/call", "params": { "name": "check_ssl_certificate", "arguments": {"domain": "example.com"} }, "id": 1 } process.stdin.write(json.dumps(request).encode()) process.stdin.flush()

📚 Usage Examples

Basic SSL Certificate Check

# Via MCP tool call result = await check_ssl_certificate("github.com") print(f"Certificate expires: {result['not_after']}")

Subdomain Enumeration

# Passive reconnaissance only subdomains = await discover_subdomains( domain="example.com", passive_only=True, sources=["crtsh", "wayback"] )

Attack Surface Mapping

# Comprehensive asset discovery surface = await map_attack_surface( domain="example.com", include_subdomains=True, check_ports=False, # Requires explicit permission identify_tech=True )

Security Header Analysis

# Check security posture headers = await analyze_security_headers("https://example.com") print(f"Security score: {headers['percentage']}%")

🛡️ Best Practices

1. Authorization & Scope

  • Always define scope clearly before testing
  • Use scope configuration files
  • Implement IP/domain allowlists
  • Log all activities for audit trails

2. Rate Limiting

  • Respect target rate limits
  • Implement exponential backoff
  • Use async operations efficiently
  • Cache results when appropriate

3. Data Handling

  • Encrypt sensitive findings
  • Follow data retention policies
  • Redact PII in reports
  • Use secure communication channels

4. Operational Security

  • Use VPN/proxy when appropriate
  • Rotate API keys regularly
  • Monitor for abuse patterns
  • Implement kill switches

🔍 Advanced Configuration

Custom Wordlists

# Add custom wordlists for enumeration CUSTOM_SUBDOMAINS = [ "api", "dev", "staging", "test", "admin", "portal", "secure", "vpn", "remote", "cloud" ] CUSTOM_API_PATHS = [ "/api/v1", "/api/v2", "/graphql", "/rest", "/oauth", "/auth", "/token", "/refresh" ]

Proxy Configuration

# Route through proxy for testing PROXY_CONFIG = { "http": "http://proxy.example.com:8080", "https": "https://proxy.example.com:8080" }

Custom User Agents

# Identify your scanner properly USER_AGENTS = { "default": "MCP-Security-Scanner/1.0 (Authorized Testing)", "mobile": "Mozilla/5.0 (iPhone; CPU iPhone OS 14_0 like Mac OS X)", "bot": "SecurityBot/1.0 (+https://example.com/bot-info)" }

🐛 Debugging

Enable Debug Logging

import logging logging.basicConfig( level=logging.DEBUG, format='%(asctime)s - %(name)s - %(levelname)s - %(message)s', handlers=[ logging.FileHandler('mcp_security.log'), logging.StreamHandler() ] )

Common Issues

  1. Connection Timeouts
    • Increase timeout values
    • Check network connectivity
    • Verify firewall rules
  2. Rate Limiting
    • Implement backoff strategies
    • Use API keys for higher limits
    • Cache results
  3. SSL Errors
    • Update certificates
    • Configure SSL verification
    • Check proxy settings

📊 Output Formats

JSON Export

import json # Export results with open('scan_results.json', 'w') as f: json.dump(attack_surface, f, indent=2)

CSV Reports

import csv # Generate CSV report with open('vulnerabilities.csv', 'w', newline='') as f: writer = csv.DictWriter(f, fieldnames=['host', 'port', 'service', 'severity']) writer.writeheader() writer.writerows(findings)

HTML Reports

# Generate HTML report with findings html_template = """ <!DOCTYPE html> <html> <head><title>Security Assessment Report</title></head> <body> <h1>Attack Surface Report</h1> <h2>Executive Summary</h2> <p>Risk Level: {risk_level}</p> <h2>Findings</h2> <ul> {findings} </ul> </body> </html> """

🤝 Contributing

  1. Fork the repository
  2. Create a feature branch
  3. Follow secure coding practices
  4. Add tests for new features
  5. Submit a pull request

📜 License & Disclaimer

This software is provided for educational and authorized testing purposes only. The authors assume no liability for misuse or damage caused by this software. Always ensure you have explicit permission before testing any systems.

🔗 Resources

💡 Future Enhancements

  • Integration with Metasploit modules
  • Automated vulnerability scanning
  • Cloud security posture management
  • Container security assessment
  • GraphQL security testing
  • WebSocket security analysis
  • Mobile API testing support
  • Compliance reporting (PCI, HIPAA, SOC2)
  • Integration with SIEM platforms
  • Threat modeling automation

⚠️ Ethical Usage Guidelines

Remember the security professional's creed:

  • Do no harm
  • Respect privacy
  • Follow the law
  • Get permission
  • Report responsibly
  • Protect findings
  • Educate others

Built with respect for security and privacy by the cybersecurity community

This server cannot be installed

-
security - not tested
F
license - not found
-
quality - not tested

How are these scores calculated?

hybrid server

The server is able to function both locally and remotely, depending on the configuration or use case.

Enables ethical security testing and attack surface management through SSL certificate validation, CVE queries, subdomain enumeration, security header analysis, and comprehensive reconnaissance capabilities. Designed for authorized penetration testing workflows with responsible disclosure practices.

  1. 🔒 Important Security & Legal Notice
    1. 📦 Components
      1. 1. Security Tools Server (security_server.py)
      2. 2. ASM Server (asm_server.py)
      3. 3. Threat Intelligence Server (Coming Soon)
    2. 🚀 Installation
      1. Prerequisites
      2. Optional Dependencies
      3. API Keys Setup
    3. 🔧 Configuration
      1. For Claude Desktop
      2. For Custom Clients
    4. 📚 Usage Examples
      1. Basic SSL Certificate Check
      2. Subdomain Enumeration
      3. Attack Surface Mapping
      4. Security Header Analysis
    5. 🛡️ Best Practices
      1. 1. Authorization & Scope
      2. 2. Rate Limiting
      3. 3. Data Handling
      4. 4. Operational Security
    6. 🔍 Advanced Configuration
      1. Custom Wordlists
      2. Proxy Configuration
      3. Custom User Agents
    7. 🐛 Debugging
      1. Enable Debug Logging
      2. Common Issues
    8. 📊 Output Formats
      1. JSON Export
      2. CSV Reports
      3. HTML Reports
    9. 🤝 Contributing
      1. 📜 License & Disclaimer
        1. 🔗 Resources
          1. 💡 Future Enhancements
            1. ⚠️ Ethical Usage Guidelines

              Related MCP Servers

              • Anti-Bullshit MCP Server

                bmorphism
                A
                security
                A
                license
                A
                quality
                Enables analysis of claims, validation of sources, and detection of manipulation using multiple epistemological frameworks to ensure credible and ethical information.
                Last updated -
                3
                19
                MIT License
                • Apple

              • MCP Server Pentest

                9olidity
                A
                security
                A
                license
                A
                quality
                A security testing tool that enables automated vulnerability detection including XSS and SQL injection, along with comprehensive browser interaction capabilities for web application penetration testing.
                Last updated -
                12
                983
                19
                MIT License

              • MCP Vulnerability Management System

                nesirat
                -
                security
                A
                license
                -
                quality
                A comprehensive system that helps organizations track, manage, and respond to security vulnerabilities effectively through features like vulnerability tracking, user management, support tickets, API key management, and SSL certificate management.
                Last updated -
                MIT License

              • TLS MCP Server

                malaya-zemlya
                -
                security
                F
                license
                -
                quality
                Provides a unified tool for TLS certificate analysis with automatic OpenSSL integration, allowing users to fetch, analyze and assess security of TLS certificates without manual PEM handling.
                Last updated -
                • Apple
                • Linux

              View all related MCP servers

              New MCP Servers

              MCP directory API

              We provide all the information about MCP servers via our MCP API.

              curl -X GET 'https://glama.ai/api/mcp/v1/servers/Ap6pack/mcp'

              If you have feedback or need assistance with the MCP directory API, please join our Discord server