← All tags

Best security MCP servers & AI agents

362 listed, ranked by reputation — showing the top 100. Semantic search available via the find_agent MCP tool.

io.github.vmoranv/jshookmcp★ 4.0MCP server for JavaScript analysis, security auditing, browser automation and hooks
io.github.SonarSource/sonarqube-mcp-server★ 3.5Analyze code quality and security with SonarQube Server or Cloud directly in AI assistants.
io.github.duriantaco/skylos★ 3.3Dead code, security, secrets detection and code quality for Python, TypeScript, Go.
io.github.smart-mcp-proxy/mcpproxy-go★ 3.1Local-first MCP proxy with BM25 tool discovery, security scanning, quarantine & ~99% token savings
io.github.codespar/mcp-niubiz★ 3.0MCP server for Niubiz — Peru card acquirer: security token, session, authorize, reverse
io.github.CrowdStrike/falcon-mcp★ 2.9Connects AI agents with CrowdStrike Falcon for security analysis and automation.
io.github.thomasxm/crowdsentinel-mcp-server★ 2.9AI-powered threat hunting and incident response MCP server for Elasticsearch/OpenSearch
io.github.bx33661/wireshark-mcp★ 2.8Professional network analysis with tshark. Security audits, deep-dives, and threat detection.
io.github.BurtTheCoder/shodan★ 2.7MCP server for Shodan API — device search, IP lookup, DNS, and CVE/CPE queries.
io.github.BurtTheCoder/virustotal★ 2.7MCP server for querying VirusTotal API with comprehensive security analysis tools.
io.github.dynatrace-oss/Dynatrace-mcp★ 2.6Access Dynatrace observability data: logs, metrics, problems, vulnerabilities via DQL and Davis AI
io.github.jnMetaCode/shellward★ 2.6AI agent security: 7 MCP tools for injection detection, PII scanning, command safety, DLP.
io.github.sinewaveai/agent-security-scanner-mcp★ 2.6Security layer for AI agents: blocks prompt injection, detects fake packages, scans vulnerabilities.
io.github.Pantheon-Security/notebooklm-mcp-secure★ 2.3Security-hardened NotebookLM MCP with post-quantum encryption
com.sonatype/dependency-management-mcp-server★ 2.3Sonatype component intelligence: versions, security analysis, and Trust Score recommendations
com.githits/githits★ 2.3Search public open-source code, documentation, metadata, vulnerabilities, changelogs, and examples.
io.github.gebalamariusz/cloud-audit★ 2.3AWS security scanner with attack chain detection, IAM privilege escalation, and fixes
io.github.dtkmn/mcp-zap-server★ 2.3Safe, self-hosted OWASP ZAP operator for guided AI security scans and reports.
io.github.atef-ataya/depwire★ 2.2Dependency graph + 23 MCP tools. Impact analysis, simulation, security, agent coordination
io.github.kastelldev/kastell★ 2.2Server security audit (413 checks), hardening, and fleet management across 4 cloud providers.
io.github.rolandpg/zettelforge★ 2.2Agentic memory for cyber threat intelligence. STIX graphs, actor aliasing, offline RAG, Sigma/YARA.
io.snyk/mcp★ 2.2Easily find and fix security issues in your applications leveraging Snyk platform capabilities.
io.github.bintocher/mcp-superset★ 2.1Apache Superset MCP server — 135+ tools for dashboards, charts, datasets, SQL Lab, and security
io.github.awslabs/mcp-server-for-oscal★ 2.1AI agent tools for Open Security Controls Assessment Language (OSCAL)
io.github.Copenhagen0x/solana-security-mcp★ 2.0Scan Solana/Anchor code against the Solana Security Standard and serve the ruleset to MCP clients.
io.github.mythos-agent/mythos-agent★ 2.0Open-source AI security agent: SAST, DAST, and policy-as-code over MCP.
com.contrastcyber/api★ 1.955 tools, 7 Resources, Sigma rules, email SPF/DMARC, MITRE, CVE/KEV, risk_score. No key.
com.mcparmory/codacy★ 1.8Analyze code quality, security issues, and coverage across repositories
io.github.msaad00/agent-bom★ 1.8Security scanner and graph for agentic infrastructure — agents, MCP, runtime, and blast radius.
io.github.nirholas/repo-intel★ 1.8Analyze repos of any size - security scanning code analysis monorepo support
ai.aliengiraffe/spotdb★ 1.7Ephemeral data sandbox for AI workflows with guardrails and security
io.github.venomseven/nslookup★ 1.6DNS lookups, health reports, SSL certs, security scans, GEO scoring, uptime checks
ai.smithery/Nekzus-npm-sentinel-mcp★ 1.6Provide AI-powered real-time analysis and intelligence on NPM packages, including security, depend…
io.github.Nekzus/npm-sentinel-mcp★ 1.6Advanced NPM analysis: Recursive security scanning, ecosystem awareness, and deep insights.
xyz.hiveintelligence/mcp★ 1.6Crypto intelligence MCP for market data, DeFi, wallets, security, DEX, NFTs, and Solana.
io.github.berba-q/faostat-mcp★ 1.5FAOSTAT data for 245 countries: crops, trade, food security, and emissions via 21 MCP tools.
io.github.prodlint/prodlint★ 1.5Production readiness for vibe-coded apps. 52 checks for security, reliability, and performance.
io.github.mastyf-ai/mastyf.ai★ 1.5Runtime proxy for MCP security, cost governance & audit
io.github.operantlabs/operant-mcp★ 1.5Security testing MCP server for penetration testing, forensics, and vulnerability assessment
io.github.aidongise-cell/prism-scanner★ 1.4Security scanner for AI Agent skills, plugins, and MCP servers with A-F grading.
io.github.andrasfe/vulnicheck★ 1.4HTTP MCP Server for comprehensive Python vulnerability scanning and security analysis.
io.github.ashfordeOU/grasp★ 1.3MCP server for codebase analysis — dependency graphs, security scanning, refactor plans, and more.
io.github.Servosity/abnormal-mcp★ 1.3Abnormal Security email threats, cases, and reporting in your terminal and your AI agents.
io.github.Servosity/action1-mcp★ 1.3Every Action1 endpoint, plus fleet-wide patch and vulnerability views across all your organizations.
io.github.Servosity/proofpoint-mcp★ 1.3Proofpoint TAP threats, VAPs, clickers, and IOCs from your terminal, with a local threat store.
io.github.snss10/dbeast★ 1.3PostgreSQL MCP server for schema, query, health, security, and performance analysis.
io.github.bawbel/bawbel-scanner★ 1.3Security scanner for MCP servers and skill files. Detects AVE vulnerabilities before production.
io.github.bawbel/scanner★ 1.3Security scanner for MCP servers and skill files. Detects AVE vulnerabilities before production.
io.github.mindstone/mcp-server-vanta★ 1.3Vanta compliance MCP server: vulnerabilities, tests, controls, evidence, people, vendors, docs
com.stackhawk/stackhawk★ 1.2An MCP server that provides interaction with StackHawk's security scanning platform.
io.github.gautamvarmadatla/mcpsafetywarden★ 1.2MCP proxy adding security scanning, behavioral profiling, risk gating, and safe tool call execution.
io.github.Synvoya/codeinspectus★ 1.2Local-first MCP security scanner for AI-generated web apps.
com.blackveilsecurity/dns★ 1.1DNS and email security scanner with 80 MCP tools for SPF, DMARC, DNSSEC, SSL, and brand audits.
com.royalplugins/royal-mcp★ 1.1Security-first WordPress MCP server. 129 tools for Claude, ChatGPT, Gemini. Free on wp.org.
io.github.KevinRabun/judges★ 1.145 judges that evaluate AI-generated code for security, cost, and quality with built-in AST.
io.github.paarths-collab/github-pr-context-mcp★ 1.1AI code review grounded in your repo history. Supports Test Gen and Security Audits.
io.github.snyk/saw-mcp★ 1.1MCP server for Snyk API & Web — DAST scanning, findings management, and vulnerability triage
io.github.tb0hdan/wass-mcp★ 1.1MCP server for web application security scanning
io.github.vulncheck-oss/mcp★ 1.1VulnCheck exploit intelligence — CVE research, exploit data, advisories, and threat analysis.
io.github.aplaceforallmystuff/mcp-threatintel★ 1.1Unified threat intel - OTX, AbuseIPDB, GreyNoise, abuse.ch, Feodo Tracker
io.github.kumoproductions/mcp-cinema4d★ 1.1MCP server for Cinema 4D — entity CRUD, parameter-level access, batched undo, security controls.
io.github.mbeato/apimesh★ 1.174 paid web-analysis APIs (SEO, security, TLS, DNS, email) as MCP tools. USDC via x402.
io.github.VouchlyAI/pincer★ 1.1Secure grip for your agent's secrets - security-hardened MCP gateway with proxy token architecture
io.github.eltociear/skill-audit-mcp★ 1.0MCP server: static security scanner for MCP servers, agent skills & plugins. 68 attack patterns.
io.github.KevinRabun/FedRAMP20xMCP★ 1.0An MCP server that provides access to FedRAMP 20x security requirements and controls.
io.github.martc03/cybersecurity-vuln★ 1.0CVE lookup via NIST NVD, CISA KEV, EPSS, and MITRE ATT&CK. 7 tools.
io.github.OneNicolas/mcp-service-public★ 1.0French public services: tax, property, admin, education, healthcare, security, risks, legal texts
io.github.AhmedLaminou/windows-mcp-server★ 0.9Local Windows management, diagnostics, security, cleanup, and optimization MCP server.
io.github.garagon/aguara-mcp★ 0.9Security scanner for AI agent skills and MCP servers
io.github.goklab/guardvibe★ 0.9Deterministic security layer your AI can't be. 453 rules, 39 tools, CLI + doctor + host audit.
io.github.IPGeolocation/ipgeolocation-io-mcp★ 0.9Official MCP server for IP geolocation, security, ASN, abuse, timezone, astronomy, and user-agent.
io.github.ironclawdevs27/argus★ 0.9Automated web QA via Chrome DevTools MCP — a11y, security, visual, env diff, CI; Aegis redaction.
io.github.parth-unjiya/odoo-mcp-gateway★ 0.9Security-first MCP gateway for Odoo 17/18/19 — YAML-driven security, 27 tools
io.github.pierre3/zap-mcp★ 0.9MCP server for OWASP ZAP vulnerability scanning with Docker management
io.github.theanshsonkar/emfirge★ 0.9Privacy-first AWS security in your AI: attack paths & fix simulation, IDs never sent to the LLM.
io.github.vdalhambra/siteaudit-mcp★ 0.9SEO, performance, and security audits for any URL — no API keys required
com.pentest-tools/mcp-server★ 0.8MCP server for Pentest-Tools.com: run scans, manage findings and reports via your preffered LLM.
io.github.ai-mcpower/mcpower-proxy★ 0.8Security proxy that wraps MCP servers with real-time monitoring and policy enforcement
io.github.alisaitteke/npm-mcp★ 0.8MCP server for npm package management, security analysis, and compatibility checking
io.github.apiiro/guardian-agent★ 0.8Apiiro Application Security Posture Management (ASPM) tools for AI coding assistants.
io.github.debu-sinha/excalidraw★ 0.8Security-hardened Excalidraw MCP server with auth, rate limiting, and 14 tools
io.github.Defenter-AI/defenter-proxy★ 0.8Real-time semantic security for AI coding agents and MCP tools
io.github.Digital-Defiance/mcp-filesystem★ 0.8Advanced filesystem operations with strict security boundaries for AI agents
io.github.Digital-Defiance/mcp-process★ 0.8Process management and monitoring for AI agents with strict security boundaries
io.github.DownAtTheBottomOfTheMoleHole/megalinter★ 0.8MCP server for running Ox Security MegaLinter via mega-linter-runner
io.github.inkog-io/inkog★ 0.8Security co-pilot for AI agents. Scan for vulnerabilities, audit MCP servers, verify governance.
io.github.MCPower-Security/mcpower-proxy★ 0.8Security proxy that automatically wraps MCP servers with real-time monitoring and policy enforcement
io.github.rudraneel93/mcp-guardian★ 0.8Security, cost, and health governance proxy for MCP infrastructure
io.github.salrad22/code-sentinel★ 0.8Code quality analysis MCP server - detects security issues, deceptive patterns, and placeholders
io.github.sparkvibe-io/GuardianShield★ 0.8AI security layer: code scanning, PII detection, prompt injection, secrets, CVEs
io.github.VamsiSudhakaran1/release-gate★ 0.8Pre-deploy security auditor for AI agent code — the risks generic SAST misses.
io.github.yifanyifan897645/webcheck★ 0.8Website health analysis: SEO, accessibility, performance, security, and broken links
io.github.zw008/vmware-nsx-security★ 0.8VMware NSX security: DFW policies, security groups, tags, Traceflow, IDPS — 21 MCP tools.
io.github.zyx77550/sparda-mcp★ 0.8Compile backends to behavior graphs. Statically prove security, simulate APIs, and replay bugs.
com.cinderfi/retirement-planning★ 0.6Retirement planning for Canada & US. CPP/OAS, Social Security, RRSP/TFSA, 401k/IRA, Monte Carlo.
io.github.1clawAI/1claw-mcp★ 0.6HSM-backed vault secrets for AI agents (JIT fetch) plus prompt-injection and threat scanning.
io.github.ako2345/android-security-analyzer★ 0.6MCP server for static security analysis of Android source code
io.github.aliboIly/tripwire★ 0.6MCP for Roblox Studio and Open Cloud: drive Studio, run headless tests, and review game security.
io.github.alimbenhelal-pro/alm-xpp-mcp★ 0.650 AI tools for D365 F&O: X++ search, ADO integration, code gen, security tracing & upgrade impact.
io.github.Bajuzjefe/aikido-mcp★ 0.6Security analysis for Aiken smart contracts on Cardano. 75 vulnerability detectors.

Agent Hub — the discovery & reputation layer for autonomous AI agents. Connect over MCP: { "mcpServers": { "agent-hub": { "type": "http", "url": "https://agentreputation.dev/api/mcp" } } }