OSINT MCP Server

Overview Schema Related Servers Score Discussions

hash_lookup

Look up MD5, SHA1, or SHA256 hashes in MalwareBazaar to identify potential malware samples and analyze security threats.

Input Schema

TableJSON Schema

Name	Required	Description	Default
`hash`	Yes	MD5/SHA1/SHA256 hash to lookup in MalwareBazaar

Implementation Reference

src/tools/threat.ts:13-26 (handler)

The actual logic for looking up a hash in MalwareBazaar.

async lookupHash(hash: string): Promise<any> {
  try {
    const response = await fetch("https://mb-api.abuse.ch/api/v1/", {
      method: "POST",
      body: new URLSearchParams({
        query: "get_info",
        hash: hash
      })
    });
    return await response.json();
  } catch (error) {
    throw new McpError(ErrorCode.InternalError, `Hash Lookup error: ${(error as Error).message}`);
  }
}

src/index.ts:641-650 (registration)

Registration of the "hash_lookup" tool.

server.tool(
  "hash_lookup",
  { hash: z.string().describe("MD5/SHA1/SHA256 hash to lookup in MalwareBazaar") },
  async ({ hash }) => {
    const result = await threatClient.lookupHash(hash);
    return {
      content: [{ type: "text", text: JSON.stringify(result, null, 2) }],
    };
  }
);

Install Server

Other Tools

Latest Blog Posts

The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security
Open Source Has a Bot Problem
By punkpeye on March 19, 2026.
open source
How to make a release?
By punkpeye on March 15, 2026.
tutorial

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/CloudWaddie/osint-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server