mcpscanner
Verified Safeby pangeacyber
Overview
A command-line tool for discovering, analyzing, and security scanning MCP (Multi-Agent Communication Protocol) servers, their tools, and resources, with change detection and similarity analysis.
Installation
mcpscanner scanEnvironment Variables
- PANGEA_AI_GUARD_TOKEN
- PANGEA_DOMAIN
Security Notes
The tool itself is designed to scan external MCP servers for security issues. It handles API tokens via environment variables. While connecting to potentially untrusted external servers always carries an inherent risk, the code demonstrates robust error handling and no obvious vulnerabilities like 'eval' or hardcoded secrets. It relies on `fastmcp` for server communication and `pangea-sdk` for AI Guard integration, both of which are standard libraries.
Similar Servers
mcp-scanner
A Python tool for scanning Model Context Protocol (MCP) servers and tools to detect potential security findings by leveraging Cisco AI Defense API, YARA rules, and LLM-as-a-judge.
mcp-interviewer
A Python CLI tool designed to evaluate, test, and generate reports on Model Context Protocol (MCP) servers to ensure compatibility and quality for LLM agent use cases.
mcp-watch
A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in MCP implementations.
Reversecore_MCP
The Reversecore_MCP server provides a Micro-Capability Platform (MCP) enabling AI agents to perform comprehensive binary analysis, malware detection, vulnerability research, and security report generation using integrated tools like Radare2, Ghidra, LIEF, and YARA.