mcp-shodan and mcp-for-security

These are **complements**: the Shodan MCP provides reconnaissance and vulnerability intelligence gathering, while the security testing MCP provides active penetration testing tools (SQLMap, NMAP, Masscan, FFUF), so they work together in a complete security testing workflow where Shodan informs the scope and targets for downstream exploitation tools.

mcp-shodan
57
Established
mcp-for-security
55
Established
Maintenance 10/25
Adoption 10/25
Maturity 18/25
Community 19/25
Maintenance 13/25
Adoption 10/25
Maturity 9/25
Community 23/25
Stars: 115
Forks: 22
Downloads:
Commits (30d): 0
Language: TypeScript
License: MIT
Stars: 559
Forks: 98
Downloads:
Commits (30d): 1
Language: TypeScript
License: MIT
No risk flags
No Package No Dependents

About mcp-shodan

BurtTheCoder/mcp-shodan

MCP server for Shodan — search internet-connected devices, IP reconnaissance, DNS lookups, and CVE/CPE vulnerability intelligence. Works with Claude Code, Codex, Gemini CLI, and Claude Desktop.

Implements the Model Context Protocol (MCP) via stdio transport with seven specialized tools—IP lookup, device search, CVE/CPE queries, and DNS resolution—each returning structured JSON for programmatic analysis. Built as an npm package that integrates directly into Claude Desktop, Claude Code, Codex CLI, and Gemini CLI through configuration-based server registration, leveraging Shodan's CVEDB for enriched vulnerability data including CVSS, EPSS, and KEV status tracking.

About mcp-for-security

cyproxio/mcp-for-security

MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. Integrate security testing and penetration testing into AI workflows.

Each MCP server wraps a security tool with standardized input/output interfaces, enabling LLMs and AI agents to execute reconnaissance, scanning, and vulnerability testing tasks programmatically. The collection spans the full security testing lifecycle—from passive reconnaissance (Amass, certificate enumeration) through active scanning (Nmap, Masscan, FFUF) to vulnerability assessment (Nuclei, SQLmap, WPScan)—all deployable via Docker or standalone. Designed for integration with the Cyprox agentic-AI platform and any MCP-compatible client, it enables orchestrated security workflows where AI systems chain multiple tools together for automated threat detection and remediation.

Related comparisons

mcp-shodan and Wazuh-MCP-Server mcp-shodan and mcp-virustotal mcp-shodan and mcp-security-hub mcp-shodan and agent-security-scanner-mcp mcp-shodan and pentest-mcp mcp-shodan and mcp-armor

Scores updated daily from GitHub, PyPI, and npm data. How scores work