MCP.so
登录

Shodan MCP Server

@Cyreslab-AI

关于 Shodan MCP Server

A Model Context Protocol server that provides access to Shodan API functionality

基本信息

分类

其他

许可证

MIT

运行时

node

传输方式

stdio

发布者

Cyreslab-AI

配置

使用下面的配置,将此服务器添加到你的 MCP 客户端。

{
  "mcpServers": {
    "shodan": {
      "command": "node",
      "args": [
        "/path/to/shodan-mcp-server/build/index.js"
      ],
      "env": {
        "SHODAN_API_KEY": ""
      }
    }
  }
}

工具

未检测到工具

工具是从 README 中自动提取的。维护者可以在 ## Tools 标题下列出工具,即可填充这部分内容。

概览

What is Shodan MCP Server?

A Model Context Protocol (MCP) server that provides access to Shodan API functionality and CVE database, allowing AI assistants to query information about internet-connected devices, services, and vulnerabilities. It integrates with Claude or other MCP-compatible AI assistants.

How to use Shodan MCP Server?

Clone the repository, run npm install and npm run build, set the SHODAN_API_KEY environment variable, then start with npm start. For Claude integration, add the server to MCP settings with the command node and the path to build/index.js, providing the API key via env.SHODAN_API_KEY.

Key features of Shodan MCP Server

  • Host information lookup for specific IP addresses
  • Search Shodan’s database for devices and services
  • Network range scanning using CIDR notation
  • SSL certificate details for domains
  • IoT device search by device type and country
  • CVE lookup, search, and exploit prediction

Use cases of Shodan MCP Server

  • Investigate a suspicious IP address for open ports and services.
  • Find all internet-facing Apache servers in a given country.
  • Identify known vulnerabilities affecting a specific software product.
  • Enumerate subdomains and DNS records for a domain.
  • Retrieve the latest Known Exploited Vulnerabilities from CISA.

FAQ from Shodan MCP Server

What does Shodan MCP Server require to run?

It requires Node.js, npm, and a valid Shodan API key. The API key must be set as the SHODAN_API_KEY environment variable.

Are all features free?

No. Search, network scanning, SSL certificate lookup, IoT device search, and domain info require a paid Shodan API key. CVE database functionality (CVE lookup, search, CPE info, newest CVEs, KEV, EPSS) is completely free.

How is authentication handled?

The server authenticates with Shodan via the API key provided in the SHODAN_API_KEY environment variable. No additional authentication is used for the MCP transport.

Can I use this server with other MCP clients besides Claude?

Yes — it is built on the MCP standard and can be used with any MCP-compatible AI assistant. The README specifically mentions Claude Desktop and Claude.app.

What data does Shodan MCP Server access?

It accesses the Shodan API (internet device data, SSL certificates, DNS, etc.) and a CVE database. No data is stored locally; all queries go to Shodan and the CVE source.

评论

其他 分类下的更多 MCP 服务器