mcp-for-security
Verified Safeby yes0ng
Overview
Assisting with information security tasks by providing product end-of-life dates, CVE lookups, and threat intelligence checks for IPs, domains, and URLs.
Installation
python servers/reputation-checker/server.pyEnvironment Variables
- VIRUSTOTAL_API_KEY
- ABUSEIPDB_API_KEY
Security Notes
The servers utilize standard Python libraries (httpx, asyncio, os, json, hashlib, datetime) and interact with legitimate, well-known public security APIs (NVD, endoflife.date, VirusTotal, AbuseIPDB, URLhaus). API keys for premium services are correctly loaded from environment variables, preventing hardcoding of secrets. A simple file-based cache for reputation results is implemented in a 'tmp' directory, which is a common and generally safe practice for local caching of JSON data. No 'eval' or other dynamic code execution functions are observed, and the code appears straightforward and robust.
Similar Servers
mcp-maintainer-toolkit
This server provides a Model Context Protocol (MCP) interface with various tools and resources designed to assist in maintaining, testing, and developing MCP repositories and clients.
mcp-registry
Provides a centralized API for applications like VS Code with GitHub Copilot to discover and access Model Context Protocol (MCP) servers within the AkerBP organization.
falconfeeds-mcp
This server provides real-time cybersecurity threat intelligence, including CVEs, IOCs, threat actors, and threat feeds, through the Model Context Protocol to enhance AI-driven threat analysis and reporting.
mcpscanner
Analyzes MCP servers by discovering configuration files, fetching available tools and resources, scanning them for security risks using Pangea AI Guard, and reporting findings including tool similarities and changes.