LOLBAS-MCP
Verified Safeby malwaredetective
Overview
Provides an MCP interface for Large Language Models to query the LOLBAS Project API for living-off-the-land binaries and scripts, facilitating automated threat intelligence gathering.
Installation
python lolbas-mcp-server.pySecurity Notes
The server securely fetches data from a public, well-known API (LOLBAS Project) using standard HTTP requests with SSL verification. There is no evidence of dynamic code execution (e.g., 'eval', 'exec'), injection vulnerabilities, or hardcoded secrets. Input parameters are used for data filtering, not command construction. The server operates locally via STDIO, minimizing network attack surface. The primary external risk would be a compromise of the LOLBAS API itself.
Similar Servers
mcp-server-code-execution-mode
This server enables LLM agents to execute Python code in a highly secure, isolated container environment, facilitating complex multi-tool orchestration and data analysis with minimal LLM context token usage.
MCP-Security-Proxy
Transparent security proxy for LLM tool interactions, employing ensemble anomaly detection to classify requests as benign or malicious.
monkdb-mcp
Enables LLM frameworks (Claude, LangChain, CrewAI) to securely and efficiently interact with MonkDB using standardized tools for SQL queries, table inspection, and health checks.
mcp-framework-server
A Python-based server for a Model Context Protocol (MCP) enabling interactive career orientation (proforientation) dialogues via a REST API, designed to integrate with a Telegram bot.