OWASP MCP Integrations

The Open Web Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software through community-led open source software projects, hundreds of chapters worldwide, tens of thousands of members, and by hosting local and global conferences.

View all MCP Integrations for OWASP

Why this server?
Implements OWASP-aligned security checks through the test_security tool to validate authentication flows against security standards.
Better Auth MCP Server
Security Developer Tools Testing & QA Tools
nahmanmate
A
security
A
license
A
quality
Enables enterprise-grade authentication management with secure credential handling and support for multi-protocol auth, complete with tools for analyzing, setting up, and testing authentication systems.
Last updated 10 months ago
8
37
AGPL 3.0
Why this server?
Supports implementation of protection against OWASP top 10 vulnerabilities through rule creation and configuration.
Fastly NGWAF MCP Server
Security Autonomous Agents Remote
purpleax
A
security
A
license
A
quality
Provides seamless integration with Fastly's Next-Gen Web Application Firewall API, enabling AI assistants to manage web application security through natural language interactions.
Last updated 6 months ago
29
1
MIT License
Why this server?
Integrates OWASP security guidelines and references for vulnerability classifications and remediation advice, mapping detected issues to OWASP Top 10 categories.
Adversary MCP Server
Penetration Testing Code Analysis Developer Tools
brettbergin
A
security
A
license
A
quality
A security-focused server that integrates with Cursor IDE to provide real-time vulnerability detection, exploit generation, and security insights during software development.
Last updated 4 months ago
9
1
MIT License
Why this server?
Implements OWASP-aligned security checks for authentication systems, allowing validation against industry-standard security practices
Better Auth MCP Server
Security App Automation
LexiconAlex
A
security
A
license
A
quality
Enterprise-grade authentication solution that provides secure credential management with encryption, multi-protocol authentication (OAuth2, SAML, LDAP), and real-time threat detection for applications.
Last updated 10 months ago
8
AGPL 3.0
Why this server?
Implements OWASP security standards and best practices
Open Search MCP
flyanima
A
security
A
license
A
quality
A comprehensive Model Context Protocol server providing 33 specialized research and search tools for Claude Desktop, enabling powerful search capabilities across academic, technical, and general domains.
Last updated 5 months ago
40
2
MIT License
Why this server?
Conducts security audits and vulnerability scanning with OWASP compliance checking
Houtini-lm
Code Analysis Developer Tools Autonomous Agents
houtini-ai
A
security
A
license
A
quality
Houtini LM - LM Studio MCP Server with Expert Prompt Library and Custom Prompting - Offload tasks to LM Studio from Claude Desktop.
Last updated 2 months ago
34
14
8
MIT License
Why this server?
Provides comprehensive integration with OWASP ZAP for automated web crawling (spider scans), active vulnerability scanning, proxy integration, alert management, and security context configuration.
VulneraMCP
Penetration Testing Security Testing & QA Tools
telmon95
A
security
A
license
A
quality
AI-powered bug bounty hunting platform that integrates security tools (OWASP ZAP, Caido, Burp Suite) for automated reconnaissance, vulnerability testing, JavaScript analysis, and finding management with PostgreSQL storage.
Last updated 23 days ago
47
10
MIT License
Why this server?
Validates compliance against OWASP security frameworks including the OWASP Top 10 vulnerabilities and security best practices
MCP Shamash
Security Penetration Testing Testing & QA Tools
NeoTecDigital
A
security
F
license
A
quality
Enables security auditing, penetration testing, and compliance validation with tools like Semgrep, Trivy, Gitleaks, and OWASP ZAP. Features strict project boundary enforcement and supports OWASP, CIS, and NIST compliance frameworks.
Last updated 3 months ago
7
Why this server?
Implements OWASP Top 10 security scanning and compliance reporting for comprehensive vulnerability detection in codebases
FastApply MCP Server
Code Analysis Developer Tools Testing & QA Tools
betmoar
A
security
F
license
A
quality
Enterprise-grade code intelligence platform providing AI-powered code analysis, semantic search, security scanning, and automated refactoring capabilities. Integrates with local AI models for zero-cost operations while delivering comprehensive development workflow automation.
Last updated 3 months ago
2
4