Popular MCP Servers

• bawbel-mcp

  bawbel

  A

  license

  A

  quality

  B

  maintenance

  Bawbel MCP Server lets any agent scan MCP servers and skill files for security vulnerabilities mid-conversation. Seven tools covering server-card scanning, conformance scoring, rug pull detection, and AVE threat intelligence queries. Powered by the AVE standard with OWASP MCP Top 10 mapping on every finding. Free, Apache 2.0, no API key required.

  Last updated 2026-05-23

  46

  10

  1

  Apache 2.0

• Cybersecurity-MCP-Server

  gaoharimran29-glitch

  A

  license

  A

  quality

  C

  maintenance

  CyberSecurity MCP Server extends Claude with real-time cybersecurity reconnaissance capabilities that Claude doesn't have by default. Instead of manually running 5 different tools across different terminals, just tell Claude "analyze google.com" and get a complete security breakdown instantly. Tools included: * WHOIS Lookup — registrar, ownership, creation/expiry dates * DNS Enumeration — A,

  Last updated 2026-05-27

  22

  8

  2

  MIT
• 

  @konsulto/mcpofficial

  konsulto

  A

  license

  A

  quality

  C

  maintenance

  MCP server that enables Claude Code to drive the Konsulto cybersecurity audit platform from the CLI, including reading and writing findings, managing evidence, and handling scope and assets.

  Last updated 2026-05-12

  19

  24

  1

  MIT
• 

  Beagle Security MCP Serverofficial

  beaglesecurity

  A

  license

  B

  quality

  C

  maintenance

  Enables integration with Beagle Security API for managing security testing projects, applications, domain verification, and automated penetration tests. Provides 18 tools for creating, monitoring, and retrieving results from security assessments.

  Last updated 2025-07-09

  17

  1

  MIT

• mcp-security-toolkit

  x0base

  A

  license

  A

  quality

  B

  maintenance

  14 atomic MCP tools for AppSec and AI Security engineers: source/schema/prompt audit primitives, JWT inspect, HTTP diff, pentest atoms (default creds, GraphQL introspect, phpggc, interactsh OOB), and a defensive helpers library that fixes the bugs the detectors flag. SARIF output, PyPI Trusted Publishing with Sigstore provenance.

  Last updated 2026-05-18

  6

  14

  MIT
• 

  operant-mcpofficial

  operantlabs

  A

  license

  A

  quality

  C

  maintenance

  A comprehensive security testing MCP server providing 51 tools for penetration testing, network forensics, memory analysis, and vulnerability assessment. It enables automated security audits and technical investigations across web applications, cloud environments, and network captures.

  Last updated 2026-04-01

  51

  19

  8

  MIT
• 

  agentminds-mcpofficial

  agentmindsdev

  A

  license

  A

  quality

  C

  maintenance

  MCP server for AgentMinds collective intelligence platform, enabling AI agents to scan websites for security/SEO/performance issues, pull personalized recommendations, and share findings across the network.

  Last updated 2026-05-12

  7

  48

  MIT

• Bug Bounty MCP Server

  SlanyCukr

  A

  license

  C

  quality

  C

  maintenance

  Enables AI agents to generate and manage specialized bug bounty hunting workflows including reconnaissance, vulnerability testing, OSINT gathering, and file upload testing. Provides REST API endpoints for comprehensive security assessments with intelligence-driven vulnerability prioritization.

  Last updated 2025-09-22

  16

  40

  2

  MIT

• hospital-vuln-scanner-mcp

  12211725-star

  A

  license

  A

  quality

  C

  maintenance

  A real security scanning MCP server for medical information systems, supporting port scanning, vulnerability detection, medical system identification, and compliance report generation.

  Last updated 2026-04-22

  14

  1

  MIT

• Kali Metasploit MCP Server

  andreransom58-coder

  A

  license

  B

  quality

  C

  maintenance

  Enables interaction with Metasploit Framework for authorized security testing, including exploit searches, payload management, network scanning with nmap, and database operations for penetration testing workflows.

  Last updated 2025-11-17

  9

  MIT

• osint-mcp-server

  badchars

  A

  license

  A

  quality

  B

  maintenance

  Provides AI agents with 37 OSINT tools and 12 data sources to perform unified reconnaissance, domain analysis, and attack surface mapping. It enables agents to query, correlate, and reason across platforms like Shodan, VirusTotal, and Censys in parallel.

  Last updated 2026-03-17

  37

  185

  18

  MIT

• MCP Interactsh Bridge

  tachote

  A

  license

  A

  quality

  C

  maintenance

  Enables out-of-band interaction testing by integrating ProjectDiscovery's interactsh service as an MCP server. Allows AI agents to create callback domains, send probes, and capture DNS/HTTP interactions for security testing and verification workflows.

  Last updated 2025-10-15

  4

  33

  2

  MIT

• Adversary MCP Server

  brettbergin

  A

  license

  A

  quality

  C

  maintenance

  A security-focused server that integrates with Cursor IDE to provide real-time vulnerability detection, exploit generation, and security insights during software development.

  Last updated 2025-08-26

  7

  1

  MIT
• 

  MCP Hub Securityofficial

  mcp-hub-corp

  F

  license

  A

  quality

  C

  maintenance

  Security gate that scans MCP servers and Claude Code Skills for vulnerabilities before execution.

  Last updated 2026-05-18

  7

• BloodHound MCP Server

  mwnickerson

  A

  license

  B

  quality

  C

  maintenance

  Enables security professionals to query and analyze Active Directory attack paths from BloodHound Community Edition data using natural language through Claude Desktop's Model Context Protocol interface.

  Last updated 2026-05-21

  79

  91

  GPL 3.0
• 

  Sekrd Security Scannerofficial

  sekrdcom

  F

  license

  A

  quality

  C

  maintenance

  Enables deep security auditing of web applications directly from AI IDEs including Cursor and Claude Code. Scans URLs for vulnerabilities, returns security scores with SHIP/BLOCK verdicts, and provides specific fix prompts for remediation.

  Last updated 2026-05-04

  3

• Ligolo-ng MCP Server

  schwarztim

  A

  license

  B

  quality

  C

  maintenance

  This MCP server enables AI assistants to control Ligolo-ng operations on a remote Kali Linux machine via SSH, providing tools for managing proxy, agents, tunnels, routes, and listeners for network pivoting during security assessments.

  Last updated 2026-05-09

  19

  MIT

• x64dbg MCP Server

  ouonet

  A

  license

  A

  quality

  C

  maintenance

  Enables AI assistants to perform reverse engineering and debugging of Windows executables through x64dbg, with tools for loading executables, controlling execution, analyzing memory and security, and generating reports.

  Last updated 2026-05-22

  39

  28

  2

  MIT

• ThreatByte-MCP

  anotherik

  A

  license

  B

  quality

  C

  maintenance

  An intentionally vulnerable case management system designed for security training that provides MCP tools for SOC analyst workflows like case handling and indicator search. It enables users to explore and demonstrate common security weaknesses such as prompt injection, SQL injection, and broken authorization in an MCP-integrated environment.

  Last updated 2026-05-12

  22

  3

  MIT

• OnSecurity MCP Server

  onsecurity

  A

  license

  B

  quality

  F

  maintenance

  OnSecurity MCP Server

  Last updated 2025-08-13

  5

  MIT