secops-mcp

securityfortech

All-in-one security testing toolbox that brings together popular open source tools through a single MCP interface. Connected to an AI agent, it enables tasks like pentesting, bug bounty hunting, threat hunting, and more.

Overview

What is secops-mcp

secops-mcp is an all-in-one security testing toolbox that integrates popular open-source tools into a single MCP interface. It is connected to an AI agent, enabling various security tasks such as penetration testing, bug bounty hunting, and threat hunting.

How to Use

To use secops-mcp, first ensure you have Docker installed for containerized deployment. Clone the repository, build the Docker image, and configure it with Claude Desktop by editing the `claude_desktop_config.json` file to include the secops-mcp command.

Key Features

Key features of secops-mcp include integration with multiple security tools like Nuclei, FFuf, SQLMap, and Metasploit, providing functionalities for vulnerability scanning, web fuzzing, network discovery, and advanced password recovery, all accessible through a unified interface.

Where to Use

secops-mcp can be used in various fields including cybersecurity, software development, and IT security, particularly in environments where security assessments and vulnerability testing are critical.

Use Cases

Use cases for secops-mcp include conducting penetration tests on web applications, performing bug bounty hunting for identifying vulnerabilities, executing threat hunting to detect potential security threats, and utilizing various tools for comprehensive security audits.

Content

# secops-mcp All-in-one security testing toolbox that brings together popular open source tools through a single MCP interface. Connected to an AI agent, it enables tasks like pentesting, bug bounty hunting, threat hunting, and more. ## Getting Started ### Prerequisites - Docker (for containerized deployment) - Claude Desktop ### Installation Build the Docker image ```bash git clone https://github.com/securityfortech/secops-mcp cd secops-mcp docker build -t secops-mcp . ``` ### Claude Desktop Integration Edit your `claude_desktop_config.json`: ```json { "mcpServers": { "secops-mcp": { "command": "docker", "args": ["run", "--rm", "-i", "secops-mcp"] } } } ``` Enjoy the MCP integration to Claude Desktop ![secops-mcp interface](docs/img/1.png) ## Available Tools - **Nuclei**: `nuclei_scan_wrapper(target, templates, severity, output_format)` - Vulnerability scanner with template-based detection - **FFuf**: `ffuf_wrapper(url, wordlist, filter_code)` - Fast web fuzzer for content discovery - **WFuzz**: `wfuzz_wrapper(url, wordlist, filter_code)` - Web application fuzzer - **SQLMap**: `sqlmap_wrapper(url, risk, level)` - Automatic SQL injection detection and exploitation - **Nmap**: `nmap_wrapper(target, ports, scan_type)` - Network discovery and security auditing - **Hashcat**: `hashcat_wrapper(hash_file, wordlist, hash_type)` - Advanced password recovery - **HTTPX**: `httpx_wrapper(urls, status_codes)` - Fast HTTP probing with concurrency - **Subfinder**: `subfinder_wrapper(domain, recursive)` - Subdomain discovery tool - **TLSX**: `tlsx_wrapper(host, port)` - TLS grabber and analyzer - **XSStrike**: `xsstrike_wrapper(url, crawl)` - Advanced XSS detection suite - **Amass**: `amass_wrapper(domain, passive)` - Network mapping of attack surfaces - **Dirsearch**: `dirsearch_wrapper(url, extensions, wordlist)` - Web path scanner - **Metasploit**: `metasploit_wrapper(target, exploit, payload)` - Exploitation framework - **Nikto**: `nikto_wrapper(target, tuning)` - Web server scanner for vulnerabilities ## Security Considerations - Only use for authorized security testing - Follow responsible disclosure practices - Keep all security tools updated ## License This project is licensed under the MIT License.

secops-mcp

微信扫一扫分享

Overview

What is secops-mcp

How to Use

Key Features

Where to Use

Use Cases

Content

You Might Also Like

Github MCP

Skyvern

anything-llm

chatbox

semantic-kernel

MaxKB

repomix

apisix

screenpipe

UI-TARS-desktop