Best Security MCP Servers

Integrates with dnstwist to automate DNS fuzzing for detecting typosquatting, phishing, and corporate espionage threats.

Microsoft Enterprise

Official Remote

Query Microsoft Entra identity data using natural language

MCP Fortress

Official Remote

Security scanner detecting vulnerabilities, prompt injection, and tool poisoning

B

Behavioral Prediction

Remote

Provides AI-powered tools to analyze wallet behavior prediction, fraud detection and rug pull prediction.

Tenzir

Official

Integrates with Tenzir data pipelines and OCSF schema framework to execute cybersecurity data processing workflows and retrieve structured security event definitions for threat hunting and security analysis.

Performs comprehensive security analysis of code repositories by detecting exposed secrets, vulnerabilities, dependency issues, and configuration problems using regex patterns and vulnerability detection algorithms.

Microsoft Sentinel

Official Remote

Query and analyze security data, incidents, and threat intelligence from Microsoft Sentinel's data lake using natural language.

Dynatrace Managed MCP Server

Official

Enables AI assistants to interact with self-hosted Dynatrace Managed environments to retrieve observability data, security insights, and performance metrics. It allows users to query problems, logs, events, and SLOs through natural language interfaces in both local and remote modes.

Sonatype

Official Remote

Component intelligence with versions, security analysis, and Trust Score recommendations

Provides web-based security audit capabilities for Node.js projects by scanning package.json files, running npm audit commands, and generating structured markdown reports categorized by vulnerability severity levels for automated security assessment workflows.

C

Company Lens

Remote

Search Japanese company database

SCP Local MCP Server

Official

Enables secure access to customer e-commerce data (orders, loyalty points, offers, preferences) through the Shopper Context Protocol with OAuth 2.0 authentication. Supports discovering and connecting to SCP-enabled merchants for personalized shopping assistance.

A security-focused server that integrates with Cursor IDE to provide real-time vulnerability detection, exploit generation, and security insights during software development.

IAM Policy Autopilot

Official

Analyzes application code locally to automatically generate baseline AWS IAM identity-based policies by detecting AWS SDK calls in Python, Go, and TypeScript applications. Helps AI coding assistants quickly create IAM permissions that can be refined as applications evolve.

PingOne Advanced Identity Cloud MCP Server

Official

Enables AI assistants to interact with PingOne Advanced Identity Cloud environments through natural language, supporting user management, authentication theme customization, log analysis, and identity data queries with secure OAuth 2.0 authentication.

iExec MCP Server

Official

An MCP server that enables AI agents to interact with the iExec protocol for confidential data management, governance, and Web3Mail services. It allows users to protect sensitive information, manage access permissions, and perform blockchain wallet operations through natural language commands.

Lilo Property

Official Remote

Vacation rental booking and guest protection for AI agents.

GhidraMCP

MCP server for Ghidra reverse engineering. Enables AI assistants to decompile binaries, analyze functions, rename variables, set types, and navigate disassembly directly from LLM conversations. 7,800+ GitHub stars.

HexStrike AI

Advanced MCP server enabling AI agents to autonomously run 150+ security and penetration testing tools. Covers reconnaissance, vulnerability scanning, exploitation, network analysis, and forensics. 7,200+ GitHub stars.

ZoomEye MCP Server

Official

MCP server for querying the ZoomEye API

Arch Linux MCP (Model Context Protocol)