data-breach-detector
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@data-breach-detectorCheck if example.com has been breached"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
data-breach-detector
A read-only breach-intelligence MCP server. It answers "has this domain been breached, what's the recent breach news, how severe is this threat text" from public threat-intelligence disclosure feeds — and reports intelligence, not contents: the existence, timing, scale, category and exposed data-types of a breach, never the leaked records themselves.
Built for defenders. Comparable in spirit to HaveIBeenPwned's own directory.
What it does not do
No arbitrary URL fetch, no crawl, no proxy — no general scraping primitives.
No
.onionmarketplace access, no transactions.Never returns the raw text of a dump, paste or leak. A redaction layer strips emails, hashes, IPs, crypto addresses and credential-shaped tokens from every string returned.
Related MCP server: Cyberbro MCP Server
Sources (public, no key)
HaveIBeenPwned
/api/v3/breaches— the public breach directory: domain, breach date, pwn count, and the categories of data exposed.ransomwatch (
joshhighet/ransomwatch) — public ransomware leak-site tracker.
Tools
tool | what it returns |
| recent disclosures — entity, date, scale, exposed data types, severity |
| does a domain/company appear in breach data — yes/no + metadata |
| classify a piece of security text — level, categories, action (no network) |
| which feeds are aggregated + cache freshness |
Run
pip install data-breach-detector
data-breach-detector # stdio (for MCP clients)
data-breach-detector --http # streamable-HTTP on 127.0.0.1:8790/mcpOr point an MCP client at the config:
{ "mcpServers": { "data_breach_detector": {
"command": "data-breach-detector"
} } }License
MIT. The breach data belongs to its sources (HaveIBeenPwned, ransomwatch); this tool only aggregates their public disclosure metadata, with attribution.
This server cannot be installed
Maintenance
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/beepboop2025/data-breach-detector'
If you have feedback or need assistance with the MCP directory API, please join our Discord server