ADEO CTI MCP Server
@ADEOSec
The Shodan MCP Server by ADEO Cybersecurity Services provides cybersecurity professionals with streamlined access to Shodan's powerful reconnaissance capabilities through an intuitive Model Context Protocol interface. It enables efficient asset discovery, vulnerability assessment
Overview
What is ADEO CTI MCP Server?
It is a Model Context Protocol (MCP) server developed by ADEO Cybersecurity Services that provides access to both Shodan and VirusTotal APIs for comprehensive security analysis and threat intelligence. It is designed for cybersecurity analysts to perform network intelligence operations, including host information lookup, DNS operations, vulnerability analysis, network scanning, and alerts management.
How to use ADEO CTI MCP Server?
The server is used through MCP‑compatible clients by invoking its provided tools (e.g., @shodan host-info ip="8.8.8.8") and intelligent prompt templates. It requires API keys for Shodan and VirusTotal, though the README does not detail setup steps.
Key features of ADEO CTI MCP Server
- Shodan integration: host info, DNS, search, scanning, alerts, vulnerability analysis
- VirusTotal integration: URL, file, IP, and domain analysis
- Combined analysis using both platforms for correlated threat intelligence
- Pre‑built analysis prompt templates for common workflows
- Batch processing and real‑time monitoring capabilities
- Rich data formatting and intelligent workflow automation
Use cases of ADEO CTI MCP Server
- Threat intelligence gathering by querying Shodan and VirusTotal for IoCs
- Vulnerability assessment of internet‑facing hosts and services
- Network monitoring and alerting for changes in exposed assets
- Forensic analysis of malware hashes, URLs, and IP addresses
- Reconnaissance and asset discovery for organizational infrastructure
FAQ from ADEO CTI MCP Server
What APIs does the ADEO CTI MCP Server integrate with?
It integrates with the Shodan and VirusTotal APIs for comprehensive security data.
What types of tools are available?
Tools include host information, DNS operations, advanced search, network scanning, alert management, CVE/CVE lookup, and VirusTotal analysis for URLs, files, IPs, and domains.
Does it include pre‑built analysis workflows?
Yes, it provides intelligent prompt templates for asset discovery, vulnerability assessment, internet search, network monitoring, ICS analysis, DNS intelligence, and service exposure analysis.
What are the prerequisites for using this server?
You need API keys for Shodan and VirusTotal, and an MCP‑compatible client to invoke the tools and prompts.
Is the server free to use?
The README does not mention pricing; each integrated API (Shodan, VirusTotal) has its own usage terms and limits.