"Cybersecurity" matching MCP tools:

• rating_get_sheet

  website-search

  Get Lenny Zeltser's cybersecurity-writing rating sheet(s) so your AI can apply the rubric. Returns the structured rubric (groups, items, scoring bands) WITHOUT computing a score. Use `rating_score_writing` if you also want a numeric score, gap analysis, or rubric-anchored feedback. This server never requests your draft and instructs your AI to keep it local—rating sheets and scoring instructions flow to your AI.

  Connector

• govcon_search_contract_awards

  DataNexus MCP

  Search government contract awards by keyword, agency, and date range. keyword: Contract scope e.g. "cybersecurity software". agency: Awarding agency e.g. "Department of Defense". Optional. date_from: Earliest award date ISO 8601 e.g. "2024-01-31". Optional. jurisdiction: "US", "EU", or "UK". Default "US". Returns: award amounts, recipient vendors, NAICS codes, award dates. Use govcon_fetch_vendor_contract_history for all contracts by a specific vendor. Use govcon_fetch_open_solicitations for active bids, not past awards. Source: USASpending.gov + SAM.gov. 4-hour cache. Example: search_contract_awards(keyword="cybersecurity software", agency="Department of Defense")

  Connector

• daily_brief

  Cybersecurity Threat Intelligence MCP

  Get the curated daily threat-intelligence brief — the day's most significant signals in one package: critical CVEs with high EPSS exploit-prediction, new CISA KEV additions, the most-exploitable vulnerabilities, and active threat indicators. Threat intel from NVD, CISA KEV, EPSS, GHSA, AbuseIPDB, and OTX. Each brief carries a MINT provenance attestation so a buyer can verify it was produced by this server, unaltered. PAID: $15 USDC per brief. Defaults to today (UTC); a brief expires at the next midnight UTC. On a 402, pay the returned Solana memo and re-call with the SAME args plus payment_tx=<signature>. An Authorization: Bearer fnet_ key bypasses payment.

  Connector

• search_available_datasets

  livedatalink

  Your guide to LiveDataLink's entire data catalog. Call this FIRST when you're unsure which tool to use, or when the user asks about data availability. LiveDataLink has 177 tools across 50+ data domains: finance (stocks, options), crypto, transportation/FMCSA carriers, property records, weather/air quality, vehicle VIN/recalls, package tracking, local business search, sanctions screening (OFAC SDN, EU, UN, BIS), FEMA disasters and flood data, federal courts (CourtListener), cybersecurity (CVE/CWE/EPSS/CISA KEV), US college metrics (IPEDS), EIA energy data (gasoline, natural gas, electricity, oil supply, renewables), FRED Federal Reserve macroeconomic series (GDP, CPI, fed funds, unemployment, yields), SEC EDGAR filings (10-K, 10-Q, 8-K, insider transactions), and NREL renewable energy (PVWatts solar, utility rates, EV charging stations), US Census demographics, EPA environmental compliance, FEC campaign finance, USPTO patents, IRS nonprofits (Form 990/EO BMF), US caselaw, public-domain books (full-text search), open-access scholarly papers (OpenAlex catalog + arXiv/PMC full-text search), and federal regulations (Federal Register rules/notices + the Code of Federal Regulations). New domains ship weekly based on which queries customers actually run. Returns exact tool names for matched domains AND logs every search to a roadmap database. High-frequency unmet queries jump the build queue. Use this freely; it costs no credits. Call for: 'what data do you have?', 'can you look up X?', 'do you have Y data?', 'what tools are available?', or any data coverage question.

  Connector

• rating_load_context

  website-search

  Load Lenny Zeltser's complete cybersecurity-writing rating toolkit: all 7 sheets, scoring policy, scoring playbook, and cross-references to the writing guidelines. This server never requests your draft and instructs your AI to keep it local—rating sheets and scoring instructions flow to your AI.

  Connector

• rating_score_writing

  website-search

  Get Lenny Zeltser's scoring playbook so your AI can score a draft locally against a cybersecurity-writing rating sheet. THIS IS THE ONLY TOOL THAT PRODUCES NUMERIC SCORES — the writing-coach tools (`get_security_writing_guidelines`, `ir_*`, `product_*`) never score. Returns the rubric plus step-by-step instructions for applying it. This server never requests your draft and instructs your AI to keep it local—rating sheets and scoring instructions flow to your AI.

  Connector

• search_cve

  Cybersecurity Threat Intelligence MCP

  Search CVEs in the vulnerability database by keyword, CVSS severity/score, EPSS exploit-prediction likelihood, attack vector, recency, or CISA KEV status. Returns CVSS, EPSS, KEV flag, and affected products, newest first. Threat intel from NVD, EPSS, CISA KEV, and GHSA. PAID: $0.01 USDC per query after a daily free allowance (25/day). On a 402, pay the returned Solana memo and re-call with the SAME args plus payment_tx=<signature>. agent_id scopes your allowance; an Authorization: Bearer fnet_ key bypasses it.

  Connector

• check_domain

  Cybersecurity Threat Intelligence MCP

  Check domain reputation — threat indicators, OTX pulse associations, and threat classification for a domain. Threat intel from AlienVault OTX. PAID: $0.01 USDC per query after the daily free allowance (25/day). On a 402, pay the returned Solana memo and re-call with the SAME args plus payment_tx=<signature>. An Authorization: Bearer fnet_ key bypasses it.

  Connector

• list_pillars

  Bidda Sovereign Intelligence

  List all compliance pillars in the Bidda Sovereign Intelligence registry with node counts. Use this first to discover available compliance domains before searching. Bidda has 9,762 cryptographically-verified nodes across 39 pillars, including a MITRE layer spanning 6 frameworks (ATT&CK Enterprise/Mobile/ICS, D3FEND, ATLAS, CAPEC) plus Banking, AI Governance, Cybersecurity, Healthcare, Legal, ESG and more.

  Connector

• search_procurement

  FundingLandscape

  CONTRACTS & PROCUREMENT — Search government contracts, RFPs, RFIs, BAAs, and solicitations from SAM.gov. Better than searching SAM.gov directly — includes semantic search and NAICS industry filtering to exclude commodity noise. Use when user wants: contracts, RFPs, procurement, bids, government work. Examples: "IT consulting services", "construction management", "cybersecurity contracts".

  Connector

• search_8k_filings

  FilingFirehose

  Search recent SEC 8-K filings (current report) from the past 72 hours. Args: items: Comma-separated 8-K item codes to filter on. Examples: '1.05' (cybersecurity), '5.02' (officer departure), '8.01' (other events), '1.01' (material agreement). Leave None for all 8-Ks. suspected_buried_only: If True, return only filings where our body-text classifier flagged a suspected misclassification — i.e. cyber language under Item 8.01 that should have been 1.05, officer-departure language under 8.01 that should have been 5.02. limit: Max results (1-50, default 25). Returns: JSON-formatted list of filings. Each includes: accession_number, company_name, filed_at, filer_reported_items, detected_items, discrepancy_items (in body but not reported), and suspected_buried_events (map of reported→suspected).

  Connector

• vulnerability_scan

  Cybersecurity Threat Intelligence MCP

  Scan a product/vendor/CPE for all known vulnerabilities, sorted by EPSS exploit-prediction likelihood with CISA KEV flags — the "should I be worried about this dependency?" security scanning tool. Threat intel from NVD, EPSS, CISA KEV, and GHSA. Premium. PAID: $0.02 USDC per query after the daily free allowance (25/day). On a 402, pay the returned Solana memo and re-call with the SAME args plus payment_tx=<signature>. An Authorization: Bearer fnet_ key bypasses it.

  Connector

• list_pillars

  bidda-compliance

  List all compliance pillars in the Bidda Sovereign Intelligence registry with node counts. Use this first to discover available compliance domains before searching. Bidda has 9,762 cryptographically-verified nodes across 39 pillars, including a MITRE layer spanning 6 frameworks (ATT&CK Enterprise/Mobile/ICS, D3FEND, ATLAS, CAPEC) plus Banking, AI Governance, Cybersecurity, Healthcare, Legal, ESG and more.

  Connector

• cve_detail

  Cybersecurity Threat Intelligence MCP

  Get the full record for a single CVE from the vulnerability database — CVSS v3 breakdown (score/severity/vector/attack vector/complexity), EPSS exploit-prediction probability + percentile, CISA KEV status + due date, CWE, affected products, and references. Sources: NVD, EPSS, CISA KEV, GHSA. FREE.

  Connector

• mint_info

  Cybersecurity Threat Intelligence MCP

  Get FoundryNet Data Network info and MINT Protocol attestation details. FREE. Returns how to attest your agent's security/threat-intelligence analysis with MINT Protocol for verifiable on-chain proof, the MINT MCP endpoint, and the sister data servers (gov-contracts, brand-intel, patent-intel, financial-signals, weather-intel, compliance, academic-intel, fact-check, oss-intel, social-intel).

  Connector

• threat_feed

  Cybersecurity Threat Intelligence MCP

  Pull the recent threat-intelligence feed — real-time threat indicators (IPs, domains, hashes, URLs) from AlienVault OTX pulses and reputation checks, filterable by type, threat, confidence, and recency. PAID: $0.01 USDC per query after the daily free allowance (25/day). On a 402, pay the returned Solana memo and re-call with the SAME args plus payment_tx=<signature>. An Authorization: Bearer fnet_ key bypasses it.

  Connector

• check_ip

  Cybersecurity Threat Intelligence MCP

  Check IP reputation — abuse reports, threat type, confidence, ISP, and OTX pulse associations for an IP. Threat intel combining AbuseIPDB and AlienVault OTX. PAID: $0.01 USDC per query after the daily free allowance (25/day). On a 402, pay the returned Solana memo and re-call with the SAME args plus payment_tx=<signature>. An Authorization: Bearer fnet_ key bypasses it.

  Connector