Glama
Sign In

Shodan MCP Server

by X3r0K
Verified
GitHub
JavaScript
  • Linux
  • Apple
RedditDiscord
OverviewInspectNewSchemaRelated ServersReviewsScore
Need Help?View Source CodeReport Issue

remote-capable server

The server can be hosted and run remotely because it primarily relies on remote services or has no dependency on the local environment.

Integrations

  • Provides Docker support for containerized deployment of the Shodan MCP server, allowing users to build and run the server in isolated containers with proper environment configuration.

  • Allows searching for NGINX servers in Shodan's database using queries like 'nginx country:"US"' to discover internet-connected NGINX instances and their configurations.

  • Enables running the Shodan MCP server natively using Node.js runtime, with Node.js ≥ 20.0.0 required as the execution environment.

shodan-mcp-server

This is a Model Context Protocol (MCP) server that provides access to the Shodan API. It allows you to programmatically query Shodan for information about devices, vulnerabilities, and more.

Table of Contents

Introduction

The shodan-mcp-server provides a simple way to integrate Shodan intelligence into your applications using the Model Context Protocol (MCP). It exposes several tools that allow you to query Shodan for various types of information.

Features

Host Information: Get detailed information about an IP address Search: Query Shodan's database using their search syntax DNS Lookup: Resolve domain names CVE Information: Get details about specific CVE vulnerabilities

Installation

  1. Clone the repository:
    git clone https://github.com/X3r0K/Shodan-MCP-Server.git cd shodan-mcp-server
  2. Install the dependencies:
    npm install
  3. Build the project:
    npm run build

Configuration

  1. Obtain a Shodan API key from Shodan.
  2. Configure the MCP server in your MCP settings file (e.g., ~/.config/mcp/settings.json):
    { "mcpServers": { "shodan": { "command": "node", "args": ["/path/to/shodan-mcp-server/build/index.js"], "env": { "SHODAN_API_KEY": "<your_shodan_api_key>" }, "disabled": false, "autoApprove": [] } } }
    Replace <your_shodan_api_key> with your actual Shodan API key and /path/to/shodan-mcp-server with the actual path to the shodan-mcp-server directory.

Usage with Node.js

You can use the MCP server with Node.js using the @modelcontextprotocol/sdk package.

  1. Install the MCP SDK:
    npm install @modelcontextprotocol/sdk
  2. Use the use_mcp_tool function to call the tools:
    import { use_mcp_tool } from '@modelcontextprotocol/sdk'; async function getIpInfo(ip) { const result = await use_mcp_tool('shodan', 'get_ip_info', { ip }); console.log(result); } getIpInfo('8.8.8.8');

API Documentation

get_ip_info

Get information about a specific IP address.

Input:

{ "ip": "string" // The IP address to query }

Output:

A JSON object containing information about the IP address.

dns_lookup

Perform DNS lookups for a given domain.

Input:

{ "hostname": "string" // The hostname to resolve }

Output:

A JSON object containing the resolved IP address.

get_vulnerabilities

Track vulnerabilities associated with a specific IP address.

Input:

{ "ip": "string" // The IP address to query for vulnerabilities }

Output:

A JSON object containing a list of vulnerabilities associated with the IP address.

cve_info

Retrieve information about a specific CVE ID.

Input:

{ "cve": "string" // The CVE ID to query }

Output:

A JSON object containing information about the CVE ID.

Search Shodan for devices matching a query.

Input:

{ "query": "string" // The search query }

Output:

A JSON object containing a list of devices matching the query.

Project Structure

shodan-mcp-server/ ├── .gitignore ├── package.json ├── README.md ├── tsconfig.json └── src/ ├── index.ts └── index.mts

License

MIT

This server cannot be installed

-
security - not tested
F
license - not found
-
quality - not tested

A WebSocket server that provides MCP interface for searching and retrieving information about internet-connected devices, IP addresses, DNS data, and CVE vulnerabilities through the Shodan API.

  1. Table of Contents
    1. Introduction
      1. Features
        1. Installation
          1. Configuration
            1. Usage with Node.js
              1. API Documentation
                1. get_ip_info
                2. dns_lookup
                3. get_vulnerabilities
                4. cve_info
                5. search
              2. Project Structure
                1. License