10 #vulnerability MCP Servers & Clients
Every MCP server and client below is tagged #vulnerability — install one to give Claude, Cursor, VS Code, or any other MCP-compatible client access to vulnerability tools.
すべて
BurpMCP
swgee
Burp Suite Extension with MCP Server to enhance manual application security testing
Mlab - IOC & Threat Intelligence
mlab-sh
Threat intelligence MCP server for SOC analysts, DFIR and security researchers. Scan and enrich IOCs directly from Claude, Cursor or any MCP client: IP addresses (IPv4/IPv6), domains, file hashes and blockchain addresses. Search CVEs by keyword, vendor or product, retrieve full C
CIRCL CVE SEARCH MCP Server
Cyreslab-AI
MCP server for CIRCL CVE Search API with intelligent risk assessment and comprehensive vulnerability analysis.
Riskscore
ItIsCuthNotCup
Security awareness for AI agents — so your agent knows what's dangerous before it acts. Powered by CVE, NVD, CISA KEV, and OSV.dev vulnerability data with 196 credential detection rules, returning allow/warn/block decisions in real time. Stop your agent from running vulnerable de
Mcp Scan
Chris79OG
MCP server security scanner that detects vulnerability patterns in MCP server configurations and outputs SARIF reports. Scans for prompt injection risks, tool poisoning, excessive permissions, and other security issues in Model Context Protocol servers.
MCP Vulnerability Scanner
RobertoDure
A Model Context Protocol (MCP) server for scanning IP addresses for vulnerabilities. This server provides tools to perform security scanning on individual IPs or multiple IPs at once.
Mcp-Hydra
atiilla
A lightweight, extensible cybersecurity toolkit that connects AI assistants to security tools through the Model Context Protocol (MCP), enabling AI-assisted security research, scanning, and analysis.
Attestd - Deterministic CVE & Supply Chain Data
attestd-io
Deterministic, machine-readable CVE and supply chain risk data for infrastructure, PyPI, and npm packages. Built for AI agents and coding assistants to act on directly, no CVSS interpretation required. Covers nginx, PostgreSQL, Redis, Docker, Kubernetes, and more.
Contrastapi — Security Intelligence
UPinar
Security intelligence API for AI models. CVE lookup with EPSS/KEV enrichment, domain reconnaissance (DNS, WHOIS, SSL, subdomains, WAF detection), and code security checks (secrets, injection, headers). No API key required.
Frogeye Security Scanner
frogeye-ai
Zero-config security scanner for AI-generated apps. 25K+ vulnerability patterns. Works with Claude Code, Cursor and any MCP-compatible agent.
Frequently asked questions
What is a #vulnerability MCP server?
- An MCP server tagged #vulnerability implements the Model Context Protocol so AI assistants like Claude, Cursor, and VS Code can access vulnerability-related tools, data, or APIs.
How many #vulnerability MCP servers and clients are there?
- mcp.so currently lists 10 MCP servers and clients tagged #vulnerability.
How do I install a #vulnerability MCP server?
- Open any server below and copy its install snippet into Claude Desktop, Cursor, VS Code, or another MCP client's configuration — remote servers need no separate download.