security-tools-mcp

securityfortech

All-in-one security testing toolbox that brings together popular open source tools through a single MCP interface. Connected to an AI agent, it enables tasks like pentesting, bug bounty hunting, threat hunting, and more.

Overview

What is security-tools-mcp

security-tools-mcp is an all-in-one security testing toolbox that integrates popular open-source tools through a single MCP interface. It connects to an AI agent to facilitate various security tasks such as penetration testing, bug bounty hunting, and threat hunting.

How to Use

To use security-tools-mcp, ensure you have Docker installed for containerized deployment. Clone the repository, build the Docker image, and configure your Claude Desktop to integrate with the MCP server by editing the configuration file.

Key Features

Key features include integration of multiple security tools like Nuclei, FFuf, SQLMap, Nmap, and Metasploit, allowing for vulnerability scanning, web application fuzzing, network discovery, and more, all accessible through a unified interface.

Where to Use

security-tools-mcp can be utilized in various domains including cybersecurity, software development, and IT infrastructure management, particularly for organizations focused on enhancing their security posture.

Use Cases

Use cases for security-tools-mcp include conducting penetration tests on web applications, performing vulnerability assessments on networks, executing bug bounty programs, and engaging in threat hunting activities.

Content

# secops-mcp All-in-one security testing toolbox that brings together popular open source tools through a single MCP interface. Connected to an AI agent, it enables tasks like pentesting, bug bounty hunting, threat hunting, and more. ## Getting Started ### Prerequisites - Docker (for containerized deployment) - Claude Desktop ### Installation Build the Docker image ```bash git clone https://github.com/securityfortech/secops-mcp cd secops-mcp docker build -t secops-mcp . ``` ### Claude Desktop Integration Edit your `claude_desktop_config.json`: ```json { "mcpServers": { "secops-mcp": { "command": "docker", "args": ["run", "--rm", "-i", "secops-mcp"] } } } ``` Enjoy the MCP integration to Claude Desktop ![secops-mcp interface](docs/img/1.png) ## Available Tools - **Nuclei**: `nuclei_scan_wrapper(target, templates, severity, output_format)` - Vulnerability scanner with template-based detection - **FFuf**: `ffuf_wrapper(url, wordlist, filter_code)` - Fast web fuzzer for content discovery - **WFuzz**: `wfuzz_wrapper(url, wordlist, filter_code)` - Web application fuzzer - **SQLMap**: `sqlmap_wrapper(url, risk, level)` - Automatic SQL injection detection and exploitation - **Nmap**: `nmap_wrapper(target, ports, scan_type)` - Network discovery and security auditing - **Hashcat**: `hashcat_wrapper(hash_file, wordlist, hash_type)` - Advanced password recovery - **HTTPX**: `httpx_wrapper(urls, status_codes)` - Fast HTTP probing with concurrency - **Subfinder**: `subfinder_wrapper(domain, recursive)` - Subdomain discovery tool - **TLSX**: `tlsx_wrapper(host, port)` - TLS grabber and analyzer - **XSStrike**: `xsstrike_wrapper(url, crawl)` - Advanced XSS detection suite - **Amass**: `amass_wrapper(domain, passive)` - Network mapping of attack surfaces - **Dirsearch**: `dirsearch_wrapper(url, extensions, wordlist)` - Web path scanner - **Metasploit**: `metasploit_wrapper(target, exploit, payload)` - Exploitation framework - **Nikto**: `nikto_wrapper(target, tuning)` - Web server scanner for vulnerabilities ## Security Considerations - Only use for authorized security testing - Follow responsible disclosure practices - Keep all security tools updated ## License This project is licensed under the MIT License.

security-tools-mcp

微信扫一扫分享

Overview

What is security-tools-mcp

How to Use

Key Features

Where to Use

Use Cases

Content

You Might Also Like

Github MCP

Skyvern

anything-llm

chatbox

semantic-kernel

MaxKB

repomix

apisix

screenpipe

UI-TARS-desktop