Keyboardcrumbs Threat Intel
@kbcrumbs
关于 Keyboardcrumbs Threat Intel
Live threat intelligence for Claude — check IPs, CVEs, KEV predictions, malware hashes, and pre-attack
基本信息
配置
使用下面的配置,将此服务器添加到你的 MCP 客户端。
{
"mcpServers": {
"keyboardcrumbs": {
"command": "uvx",
"args": [
"--from",
"keyboardcrumbs-mcp",
"keyboardcrumbs-mcp"
]
}
}
}工具
8Threat intel for any IP — risk score, geo, ASN, C2 associations, staging clusters
CVE lookup — CVSS, EPSS, KEV status, exploit availability, patch urgency
Domain intel — DNS records, WHOIS, malware associations, subdomains
Malware hash lookup via VirusTotal (68+ engines) + CIRCL (6.3B files)
Live snapshot — KEV count, active C2s, ransomware victims, data freshness
KEV Oracle — top CVEs predicted to be added to CISA KEV before it happens
GhostWatch — detect pre-attack infrastructure staging for an IP or domain
Ransomware group lookup and victim tracking
概览
What is Keyboardcrumbs Threat Intel?
Live threat intelligence tools for Claude Desktop. Free, no API key required. Provides tools to check IPs, CVEs, domains, hashes, active threats, KEV predictions, staging detection, and ransomware tracking.
How to use Keyboardcrumbs Threat Intel?
Install via uvx (no install needed) or clone and run locally. Add configuration to claude_desktop_config.json and restart Claude Desktop. Once installed, ask natural language questions like "Is 45.141.26.73 malicious?" or "Should I patch CVE-2024-3400 immediately?".
Key features of Keyboardcrumbs Threat Intel
- Free, no API key or signup required.
- Live threat intelligence with data updates every 15 minutes.
- Tools for IP, CVE, domain, hash, and ransomware analysis.
- KEV Oracle predicts CVEs before CISA adds them.
- GhostWatch detects pre-attack infrastructure staging.
- Integrates multiple sources: URLhaus, VirusTotal, CIRCL, Shodan, etc.
Use cases of Keyboardcrumbs Threat Intel
- Check if an IP address is malicious with risk score and C2 associations.
- Look up CVE details including CVSS, EPSS, KEV status, and patch urgency.
- Investigate domains for DNS records, WHOIS, and malware associations.
- Query file hashes across 68+ antivirus engines and CIRCL databases.
- Get a live snapshot of active threats, KEV count, and ransomware victims.
FAQ from Keyboardcrumbs Threat Intel
Is an API key required?
No, the server is free and requires no API key or signup.
Are there rate limits?
No rate limits for normal use.
How often is the data updated?
Data updates every 15 minutes.
What data sources are used?
Sources include URLhaus, Feodo Tracker, AlienVault OTX, CISA KEV, NVD, EPSS, ExploitDB, VirusTotal, CIRCL, SANS ISC DShield, Shodan, RIPE, crt.sh, and Ransomware.live.
How do I install it?
You can install via uvx without cloning, or clone the repository and run locally. Configuration is added to claude_desktop_config.json.
其他 分类下的更多 MCP 服务器
IDA Pro MCP
mrexodiaAI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.
Inbox Zero AI
elie222The world's best AI personal assistant for email. Open source app to help you reach inbox zero fast.
Servers
modelcontextprotocolModel Context Protocol Servers
🚀 Model Context Protocol (MCP) Curriculum for Beginners
microsoftThis open-source curriculum introduces the fundamentals of Model Context Protocol (MCP) through real-world, cross-language examples in .NET, Java, TypeScript, JavaScript, Rust and Python. Designed for developers, it focuses on practical techniques for building modular, scalable,
Blender
ahujasidOpen-source MCP to use Blender with any LLM
评论