MCP servers for security scanning, vulnerability assessment, and compliance. Integrate security tools and services into your AI workflow.
159 servers available
Identity, trust, and A2A orchestration for autonomous AI agents. Official A2A partner.
Presentations.AI MCP server — create designed slide decks from a topic, text, or document.
Free IPv4 lookups against a distributed attacker-observation corpus.
MCP server for the SCF Controls Platform — 72 tools for controls, evidence, risk, and TPRM.
OAuth-enabled MyMLH MCP server for accessing MyMLH data.
An MCP server for Arcjet - the runtime security platform that ships with your AI code.
OAuth scope approvals and consent receipts for remote MCP servers.
53 tools, 7 Resources, Sigma rules, email SPF/DMARC, MITRE, CVE/KEV, risk_score. No key.
Local-first secret scanning, rotation, vault, and audit-log tools for AI agents.
Generate AI UGC video ads from any product URL — avatars, voiceover, OAuth Connect.
MCP server connecting AI agents to 100+ apps (Gmail, Slack, Notion, GitHub) via one-click OAuth.
Code intelligence MCP server: call graphs, type inference, and symbol search for Python/Go.
Package intelligence MCP for AI agents — 22 tools, 19 ecosystems, AGPL SDK, free.
Encrypted environment variable vault with AI access policies, keeping secrets safe from AI agents.
Runtime security for AI agent commerce. CLI + MCP server blocks hallucinated purchases.
Local AES-256-GCM vault for AI agents. Secrets stay local, LLMs never see real API keys.
Security proxy that wraps MCP servers with real-time monitoring and policy enforcement
Security scanner for AI Agent skills, plugins, and MCP servers with A-F grading.
Granular permission gateway for MCP agents. Per-agent scopes for Google Drive, Gmail, Calendar.
Production readiness for vibe-coded apps. 52 checks for security, reliability, and performance.
Unified threat intel - OTX, AbuseIPDB, GreyNoise, abuse.ch, Feodo Tracker
Governed MCP workflows with policy validation, findings tracking, and review gates.
Stop AI coding agents from leaking API keys. Local proxy swaps real secrets for phm_ tokens.
Security analysis for Aiken smart contracts on Cardano. 75 vulnerability detectors.
Security scanner for MCP servers and skill files. Detects AVE vulnerabilities before production.
Prompt-injection firewall for AI agents — scan untrusted text before LLM calls.
iptables for MCP — blocks dangerous tool calls, scans for secrets, logs everything.
MCP server for Shodan API — device search, IP lookup, DNS, and CVE/CPE queries.
MCP server for querying VirusTotal API with comprehensive security analysis tools.
MCP server for Kalshi prediction markets: native RSA-PSS auth, rate limiting, demo/prod safety.
MCP server for credential isolation — bots use passwords and API keys without seeing them
An MCP server that provides LinkedIn & Reddit data
Scan any public GitHub MCP-server repo for security issues. 37 MCP-specific L1 rules, 8 languages.
The WAF for agents. Pattern-based + heuristic firewall scans prompts, RAG documents, tool argume...
owasp-agentic-mcp MCP server by MEOK AI Labs
Search and audit NIST NVD CVEs by keyword, severity, CWE, CISA KEV status, and CPE.
Query OSV.dev for package vulnerabilities and batch-audit dependency lists via MCP.
Offline methodology engine for authorized penetration testing, CTF, and security research.
WAF security testing: 5,500+ payloads, 25 WAF fingerprints, 21 recon checks, bypass AI
Privacy-first unofficial Google Health API v4 MCP server for health, sleep, activity, HR agents
Local-first TikTok Content Posting API for AI agents: OAuth checks, dry-run and live uploads.
Agent-first YouTube Shorts uploader: dry-run validation, OAuth checks, synthetic-media metadata.
Real-time semantic security for AI coding agents and MCP tools
Translates a lockfile diff into a human-readable upgrade plan for npm and PyPI.
Secure secret management with a Human-In-The-Loop (HITL) interceptor for agent mutations.
Official DSers MCP for dropshipping: import, edit, price, and publish products to Shopify and Wix.
MCP gateway to REST APIs with authorization, credential injection, audit, and output policies.
Dead code, security, secrets detection and code quality for Python, TypeScript, Go.
Structural similarity-based code filter. Stops malicious code pattern reaching execution tools.
Guardian layer for AI agents: identity, secrets, audit via MCP.
Encrypted environment variable vault with AI access policies, keeping secrets safe from AI agents.
Real-time Python package and vulnerability data for AI coding agents.
Execution engine for AI agents. 412 modules: browser, file, Docker, data, crypto.
MCP server for AI job search — find jobs, track applications, get alerts. Claude, ChatGPT, Cursor.
MCP server bridging Claude.ai/Desktop with self-hosted OpenClaw via OAuth 2.1.
Zero-config MCP security scanner for AI-generated apps. 25K+ vulnerability patterns.
Full-featured ADB MCP server — 204 tools across 45 modules, from UI to baseband.
Local-first AI memory engine — 4-tier memory, people graph, Bayesian beliefs. Encrypted, 62µs.
Security scanner for AI agent skills and MCP servers
MCP proxy adding security scanning, behavioral profiling, risk gating, and safe tool call execution.
AWS security scanner with attack chain detection, IAM privilege escalation, and fixes
Credential isolation for AI agents. Inject secrets at the network boundary.
MCP package manager with trust scoring. Search, install, and audit MCP servers.
Security MCP for AI-generated code. 390 rules, 36 tools, CLI + doctor + host audit.
Run AI-driven web-app and API security scans (DAST) from Claude or any MCP agent. Windows.
EU-hosted website monitoring + 17-framework compliance MCP. One anonymous tool, four authenticated.
95.10% LongMemEval (highest published). Encrypted persistent memory for Ai coding assistants.
Webhook signature-verification audit. Stripe, GitHub, Shopify, Twilio +17. Local. Deterministic.
Open Identity Standard for AI Agents — DID, Agent Cards, delegation, reputation, payment & escrow
Quantum-inspired keyring for AI coding agents with superposition, entanglement, and tunneling.
Dependency vulnerability scanner with EPSS scoring. 9 MCP tools. Free tier + x402.
Security co-pilot for AI agents. Scan for vulnerabilities, audit MCP servers, verify governance.
The agent eval standard for MCP. Score every agent output for quality, safety, and cost.
AI agent security: 7 MCP tools for injection detection, PII scanning, command safety, DLP.
Verifiable action logs for AI agents. Every action is recorded in a SHA-256 hash chain.
19 tools + 5 resources for ServiceNow: CMDB, update sets, tables. OAuth 2.1, Tokyo+.
45 judges that evaluate AI-generated code for security, cost, and quality with built-in AST.
Kubernetes MCP server with RBAC-style, context-scoped guardrails for AI agents.
Context-aware secret scanner: lets an AI agent scan, verify, and rewrite secrets before committing.
Microsoft Outlook MCP server — 20 tools for email, calendar, contacts, and settings via Graph API.
MCP server to scan smart contracts on Base for honeypots, rug pulls, and vulnerabilities.
End-to-end encrypted access to a Standard Notes vault (protocol 004, local stdio only).
MCP server for the ESET ecosystem - Connect cloud + PROTECT On-Prem, multi-tenant, RO/RW
Real-time Firestore schema context for AI coding agents. Stop hallucinating field names.
Load OpenAPI 2.x/3.x specs and expose generic tools to discover and call multiple APIs.
Real-time DNS security analysis — DNSSEC, email auth, and RDAP. Built for SOC investigations.
Security proxy that automatically wraps MCP servers with real-time monitoring and policy enforcement
Security scanning and threat detection for AI agents
Zendesk MCP server for Claude Code and other MCP clients
SQL over real-world data — FDA, SEC, blockchain, genomics, CVEs, and more. No config.
OAuth 2.0 for AI agents — scoped delegation tokens, audit trails, and revocation.
Full Google Sheets MCP: 26 tools + run_sheets_script escape hatch. User OAuth, no service account.
Open-source AI security agent: SAST, DAST, and policy-as-code over MCP.
Network & security recon tools (DNS, WHOIS, TLS, HTTP headers) for AI coding agents, each graded.
SQLite MCP server with OAuth 2.1, HTTP/SSE, 122 tools, and smart tool filtering
Independent A-F trust grade for any MCP server, watched for drift. Free, never for sale.
MCP server for GreyNoise API - Check if IPs are internet background noise or targeted attacks
3D AI Agent Avatar — render any GLB, give it a Solana wallet, a voice, and pump.fun powers.
Generate Ethereum wallets with BIP39 mnemonics, HD paths, vanity addresses, private key backup
IBM watsonx.ai MCP by three.ws: chat, text generation, embeddings, and tokenization.
Encrypt/decrypt Ethereum keystore JSON V3 with scrypt/PBKDF2 for secure cold storage
Sign Ethereum messages - EIP-191, EIP-712 typed data, Permit2, signature verification and recovery
Render 3D avatars from three.ws and validate, inspect, and optimize glTF/GLB models.
Turn text or an image into an interactive, textured 3D model (GLB). By three.ws.
three.ws 3D avatars in your agent: render a live, interactive 3D avatar inline, or get an embed.
Discover and price paid agent services across the live x402 network, by three.ws.
Build and sign Ethereum transactions - EIP-1559, gas estimation, RLP, ERC-20 transfers
Validate Ethereum addresses, keys, checksums, keccak256 hashes, function selectors, ENS
Aggregate multiple MCP backends behind a single stdio endpoint with namespaced routing.
Secure MCP SSH automation server with policy controls, resources, prompts, stdio, and HTTP.
Zero-trust MCP security proxy with policy enforcement, PII scrubbing, approvals, and audit trails.
AI URL safety validator: SAFE/SUSPICIOUS/DANGEROUS verdict, trust score, threat intel.
AI-powered OSINT agent & MCP server. 16 tools: email, breach, IP, WHOIS, DNS, Shodan, GitHub & more.
12-layer security configs for AI coding agents. Autonomous purchase via x402 (USDC on Base).
Security-first MCP gateway for Odoo 17/18/19 — YAML-driven security, 27 tools
Typed on-prem knowledge graph for AI agents — read-only for humans, write-only for agents via MCP.
Supply chain risk scoring for npm, PyPI, Cargo, and Go. 9 tools. Behavioral signals.
Zero-knowledge persistent memory for Claude — encrypted, semantic search, EU hosted.
MCP server exposing Signet cryptographic signing, verification, and content hash tools over stdio.
Ephemeral encrypted file sharing for AI. AES-256 encryption, 24h auto-vaporization.
HTTP client, JWT decode, header analysis for AI agents
License check, outdated deps, security for AI agents
MCP server for encrypted SQLite databases (SQLCipher 4) - Works with MoneyMoney, KeePass and more
MCP server for SQLCipher 4 encrypted SQLite databases with full CRUD operations and query support
Secure secrets proxy for AI agents — manages API keys so agents never see raw credentials.
Security, cost, and health governance proxy for MCP infrastructure
Protect your AI agents and IDEs from malicious open-source packages.
Local-first cognitive memory server for AI agents with SQLite, smart ingest, and portable sync.
Open-source MCP proxy for AI agent access control with CEL policies, RBAC, and audit.
Security scanning for websites, public repositories, and Open CLAW skills.
Stdio-to-HTTP gateway — connects MCP clients to remote HTTP MCP servers
Security layer for AI agents: blocks prompt injection, detects fake packages, scans vulnerabilities.
AI-powered OSINT agent & MCP server. 16 tools: email, breach, IP, WHOIS, DNS, Shodan, GitHub & more.
ZKshare stdio MCP: store/prove/share, semantic search, sandbox proxy to HTTPS /api/v1/context.
Persistent zero-knowledge memory for AI agents. AES-256-GCM encryption, PII redaction.
Read-only Shipcheck launch-risk scans for authorized JS, TS, and MCP repos.
Vet third-party AI agent extensions + agent-config files (AGENTS.md, .cursor/rules, CLAUDE.md).
The dependency bloodhound for AI coding agents. Zero API keys, zero config.
Security audit for docker-compose.yml — 25 checks: secrets, privileges, network, volumes, images.
Hadolint-grade Dockerfile audit — 19 checks: secrets, privileges, supply chain, hygiene.
GitHub Actions workflow security audit - 21 checks: pinning, permissions, secrets, injection.
Four IaC audits in one call: Compose, Dockerfile, GitHub Actions, Kubernetes. 131 checks.
kube-linter audit for Kubernetes manifests — 63 checks: security, availability, RBAC, network.
Charter-bound defensive security copilot: secrets, obfuscation, deps, Dockerfile, IaC scans.
Query trust scores for MCP servers and agent skills. Check if a tool is safe.
Governance proxy for MCP servers — policy evaluation, human approval, audit trails.
MCP server for Front: conversations, contacts, messages, tags, and inbox workflows.
Query WhisperGraph: the internet's infrastructure & threat-intel graph (DNS, BGP, GeoIP, WHOIS).
MCP server for Blumira SIEM — query findings, evidence, and detection data via the Blumira API.
MCP server for Huntress — accounts, organizations, agents, incidents, and reports.
Multitenant Streamable HTTP wrapper for the SentinelOne purple-mcp server.
MCP server for ThreatLocker — zero-trust endpoint protection, allowlisting, and policies.
Cybersecurity MCP server: 323 prompts + 7 workflows for red team, blue team, SOC, cloud, OSINT.
VMware NSX security: DFW policies, security groups, tags, Traceflow, IDPS — 20 MCP tools.
Security sidecar for MCP servers: prompt-injection scan, Ed25519 verify, tools/list drift. 10 tools.
MCP conformance test harness. JSON-RPC, OAuth 2.1 PKCE, schemas, smoke, annotations. CLI + lib.
Ed25519-signed MCP tool manifests + spawn attestation. Layer-2 supply-chain hardening.
Store, retrieve, and pin encrypted files on IPFS via MCP tools for AI agents and workflows
AgentGuard — 20-tool AI safety MCP: policy preflight, risk scoring, audit logging, rate limits.
