Best Have I Been Pwned MCP Servers
Have I Been Pwned is a free online service that allows users to check if their personal data has been compromised in data breaches. It was created by Troy Hunt, a security researcher, to help people discover if their email addresses or passwords have been exposed in known data breaches.
Why this server?
Provides tools to check if email addresses have been found in data breaches, verify if passwords have been exposed, get detailed information about specific data breaches, and list all breaches in the system with optional domain filtering.
AlicenseAqualityDmaintenanceA Model Context Protocol (MCP) server that provides integration with the Have I Been Pwned API to check if your accounts or passwords have been compromised in data breaches.Last updated242MITWhy this server?
Allows AI agents to search for breached accounts, credentials, and pastes using the Have I Been Pwned API.
AlicenseAqualityAmaintenanceDark web & threat intelligence for AI agents. HIBP, ThreatFox, ransomware tracking, Tor .onion access, blockchain intel, exploit search, stealer logs, malware analysis — unified into a single MCP server.Last updated306647205MITWhy this server?
Enables checking email addresses for known data breaches as part of Maltego investigations.
AlicenseAqualityBmaintenanceTurns an LLM into a Maltego CE investigation copilot, enabling AI-assisted OSINT investigations by building, analyzing, and exporting Maltego graph files.Last updated52MITWhy this server?
Checks if a password has been breached using the Have I Been Pwned API with k-anonymity; the password never leaves the local machine.
Alicense-qualityBmaintenanceA keyless, defensive code-security auditor that scans codebases for hardcoded secrets, audits dependencies for known CVEs, and checks passwords against breach data using k-anonymity.Last updated1MITWhy this server?
Used for checking if a password has been exposed in data breaches via the Pwned Passwords k-anonymity API in the password_check tool.
Alicense-qualityCmaintenanceA Cloudflare Workers MCP server that puts a SOC analyst's enrichment, investigation, and detection-context workflow behind a single endpoint. It aggregates over 20 threat-intel sources into 18 MCP tools for IP, domain, URL, hash, and CVE lookups.Last updatedMITWhy this server?
Provides tools for checking if email addresses have been exposed in data breaches via the Have I Been Pwned API.
Alicense-qualityBmaintenanceEnables LLMs to perform OSINT link-analysis by exposing transforms (DNS, WHOIS, Shodan, etc.) as MCP tools for autonomous investigation and graph enrichment.Last updatedMITWhy this server?
Functions as a security scanner for MCP servers, auditing them against the OWASP MCP Top 10 and producing letter grades similar to Have I Been Pwned's breach notification service.
Why this server?
Provides tools for accessing Have I Been Pwned breach data classes, enabling agents to list canonical data class tags for filtering breaches.
Alicense-qualityCmaintenanceEnables users to query Have I Been Pwned data classes and check breaches via Pipeworx MCP gateway, allowing natural language interaction.Last updated1MITWhy this server?
Check email addresses against known data breaches and paste dumps via Have I Been Pwned.
Flicense-qualityCmaintenanceAn OSINT tradecraft toolkit MCP server offering 31 tools for domain reconnaissance, email/identity research, threat intelligence, and web/social media analysis, plus 12 guided investigation prompt templates.Last updated