MCP.so
Sign In

Cloudsword

@wgpsec

About Cloudsword

一款帮助云租户发现和测试云上风险、增强云上防护能力的综合性开源工具

Basic information

Category

Other

License

Apache-2.0

Runtime

go

Transports

stdio

Publisher

wgpsec

Config

No standard config provided

This server doesn't expose a parseable MCP config block in its README. See the repository for install instructions.

Repository

Tools

No tools detected

We auto-extract tools from the README. The maintainer can list them under a ## Tools heading to populate this section.

Overview

What is CloudSword?

CloudSword is an open-source tool designed to help public cloud tenants quickly discover, test, and improve security in their cloud environments. Targeted at security practitioners, it supports multiple cloud providers including Alibaba Cloud, Tencent Cloud, Huawei Cloud, Baidu Cloud, and Qiniu Cloud.

How to use CloudSword?

Install via HomeBrew (brew tap wgpsec/tap; brew install wgpsec/tap/cloudsword) or download the binary from the releases page. Use ./cloudsword sse http://localhost:8080 to start the MCP server in SSE mode, or run in STDIO mode. The tool uses an MSF‑like command interface: list to see modules, use <ID> to select one, set to configure parameters, and run to execute.

Key features of CloudSword

  • Integrated modules for asset discovery, risk testing, and defense deployment.
  • Supports Alibaba Cloud, Tencent Cloud, Huawei Cloud, Baidu Cloud, and Qiniu Cloud.
  • Chinese‑language output with no language barrier.
  • Command completion and MSF‑like logic for low learning curve.
  • MCP protocol support (SSE and STDIO).
  • Credentials never stored locally to avoid secondary leaks.

Use cases of CloudSword

  • List all cloud assets (OSS/COS buckets, ECS/CVM instances, RAM/CAM users, domains).
  • Search for sensitive objects in storage buckets.
  • Enumerate users, roles, and access keys for privilege auditing.
  • Create honeytokens (e.g., fake credentials) for detection.
  • Deploy bucket policies to restrict uploads to images only.

FAQ from CloudSword

How do I set cloud credentials?

Set the environment variables CLOUD_SWORD_ACCESS_KEY_ID, CLOUD_SWORD_ACCESS_KEY_SECRET, and optionally CLOUD_SWORD_SECURITY_TOKEN. Inside the tool, use set to configure per module.

Which cloud providers does CloudSword support?

Alibaba Cloud, Tencent Cloud, Huawei Cloud, Baidu Cloud, and Qiniu Cloud.

How do I run a module?

List modules with list, select one with use <ID>, set required parameters with set, then execute with run. Use info to see module details.

Does CloudSword support MCP?

Yes, from version v0.0.2 it supports the Model Context Protocol via SSE (./cloudsword sse http://localhost:8080) and STDIO.

Is the tool only in Chinese?

The interface and all

Comments

More Other MCP servers