This repository provides Model Context Protocol (MCP) server implementations for a wide array of popular security tools, enabling their integration into AI-driven cybersecurity workflows. It targets security professionals and researchers looking to automate and enhance penetration testing and threat detection processes.

How It Works

The project wraps individual security tools (like SQLMap, Nmap, FFUF) as MCP servers. This standardization allows a unified interface for interacting with diverse security functionalities, facilitating their orchestration within agentic AI systems. The use of MCP abstracts away the complexities of each tool's specific command-line interface and dependencies.

Quick Start & Requirements

• Installation: Primarily via Docker using the cyprox/mcp-for-security image.
• Prerequisites: Docker. Individual tools may have their own dependencies, requiring reference to specific MCP server documentation.
• Setup: Refer to individual tool documentation for detailed setup.

Highlighted Details

• Supports over 20 security tools including Amass, FFUF, Masscan, Nmap, Nuclei, SQLmap, and WPScan.
• Each tool is exposed via a standardized MCP interface for AI integration.
• Includes comprehensive documentation links for each tool's MCP implementation.
• Project is developed using TypeScript and the Model Context Protocol SDK.

Maintenance & Community

The project is open-source and community-driven. Further community engagement details are not explicitly provided in the README.

Licensing & Compatibility

The README does not specify a license.

Limitations & Caveats

The README mentions a "TO-DO" list of additional tools to be integrated, indicating the project is still under active development and may not yet cover all desired functionalities. Specific setup instructions for each tool's MCP server need to be consulted individually.