reconftw-mcp
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@reconftw-mcpScan example.com for subdomains"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
reconFTW MCP Server
Powered by reconFTW — Created by @six2dez
reconFTW MCP Server is a wrapper for the incredibly powerful reconFTW reconnaissance framework. This project enables AI assistants to leverage the best-in-class automation created by six2dez.
🎯 Features
Full reconFTW Integration: Access all reconFTW capabilities through MCP tools
Multiple Scan Modes: Full, passive, subdomains, vulnerabilities, OSINT, and more
Real-time Status: Monitor scan progress and get results on demand
Resource Access: Access scan results as MCP resources
Dual Transport: STDIO for local AI assistants, SSE for remote access
Docker Ready: Pre-configured Docker and docker-compose setup
Related MCP server: Nmap MCP Server
🚀 Quick Start
Option 1: Docker (Recommended)
# Clone the repository
git clone https://github.com/your-org/reconftw-mcp.git
cd reconftw-mcp
# Build and run (SSE mode)
docker-compose up -d
# MCP server will be available at http://localhost:8002/sseOption 2: Docker Direct
# Build the image
docker build -t reconftw-mcp .
# Run in SSE mode (for remote access)
docker run -p 8002:8002 -v reconftw-output:/opt/reconftw/output reconftw-mcp mcp --sse
# Run in STDIO mode (for Claude Code)
docker run -i -v reconftw-output:/opt/reconftw/output reconftw-mcp mcpOption 3: Local Installation
# Install reconFTW first
git clone --depth 1 https://github.com/six2dez/reconftw.git ~/reconftw
cd ~/reconftw && ./install.sh
# Install MCP server
pip install -r requirements.txt
# Run the MCP server
python mcp_server.py🔧 Configuration
Environment Variables
Variable | Description | Default |
| reconFTW installation directory |
|
| Scan output directory |
|
| MCP SSE server port |
|
| Enable SSE mode by default |
|
API Keys (Optional)
For enhanced reconnaissance, configure API keys in your environment or .env file:
SHODAN_API_KEY=your_shodan_key
VIRUSTOTAL_API_KEY=your_vt_key
CENSYS_API_ID=your_censys_id
CENSYS_API_SECRET=your_censys_secret
# ... see reconFTW documentation for all supported APIs📖 MCP Tools
Scanning Tools
Tool | Description |
| Start a full reconnaissance scan |
| Fast passive reconnaissance |
| Subdomain enumeration |
| Vulnerability scanning |
| OSINT gathering |
Status & Results
Tool | Description |
| Check scan progress |
| List available scans |
| Get scan findings |
| Get Nuclei vulnerability results |
Control
Tool | Description |
| Stop a running scan |
🔌 Integration with AI Assistants
Claude Code (STDIO Mode)
Add to your Claude Code configuration:
{
"mcpServers": {
"reconftw": {
"command": "docker",
"args": [
"run",
"-i",
"--rm",
"-v",
"reconftw-output:/opt/reconftw/output",
"reconftw-mcp",
"mcp"
]
}
}
}Remote MCP Clients (SSE Mode)
Connect to http://localhost:8002/sse (or your server URL).
Example Usage with Claude
User: Can you scan example.com for subdomains?
Claude: I'll start a subdomain enumeration scan for example.com.
[Claude calls subdomain_enum tool]
Claude: I've started scan #1 for example.com. Let me check the status...
[Claude calls get_scan_status tool]
Claude: The scan is running. I found 45 subdomains so far. Would you like me to wait for completion or get the current results?📁 Project Structure
reconftw-mcp/
├── Dockerfile # Docker image definition
├── docker-compose.yml # Docker Compose configuration
├── mcp_server.py # Main MCP server
├── tools.py # MCP tools implementation
├── resources.py # MCP resources implementation
├── entrypoint.sh # Container entrypoint
├── requirements.txt # Python dependencies
└── README.md # This file🛠️ Scan Modes
Mode | Description | Duration |
| Complete reconnaissance | 1-4 hours |
| Passive sources only | 10-30 min |
| Subdomain enumeration | 20-60 min |
| Vulnerability scanning | 30-90 min |
| OSINT gathering | 15-45 min |
| Web analysis only | 20-60 min |
| Host analysis only | 15-45 min |
📊 MCP Resources
Access scan data through MCP resources:
scan://list- List all available scansscan://results/{scan_name}- Get results from a scanscan://results/{scan_name}/{file_type}- Get specific result fileconfig://reconftw- Get reconFTW configurationdocs://tools- Tool documentationdocs://modes- Scan mode documentation
⚠️ Disclaimer
IMPORTANT: Usage of this tool for attacking targets without prior consent is illegal. It is the user's responsibility to obey all applicable laws. The developers assume no liability for misuse or damage caused by this tool.
Only use this tool:
On systems you own
With explicit permission from the owner
In accordance with all applicable laws and regulations
🤝 Contributing
Contributions are welcome! Please feel free to submit a Pull Request.
Fork the repository
Create your feature branch (
git checkout -b feature/AmazingFeature)Commit your changes (
git commit -m 'Add some AmazingFeature')Push to the branch (
git push origin feature/AmazingFeature)Open a Pull Request
📝 License
This project is licensed under the MIT License - see the LICENSE file for details.
🙏 Acknowledgments
reconFTW - The amazing reconnaissance framework
Model Context Protocol - The protocol that makes AI integration possible
FastMCP - The fast MCP implementation
📮 Support
Issues: GitHub Issues
Discord: reconFTW Discord
Documentation: reconFTW Docs
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/BugTraceAI/reconftw-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server