go-appsec/toolbox

Collaborative application security testing between humans and agents via CLI and MCP

41
/ 100
Emerging

Combines a wire-fidelity HTTP/2 proxy with MCP server for stateful request capture, mutation, and analysis—eliminating the need for a separate scanner or GUI. Supports both native proxying and optional Burp integration, with built-in tools for reflection detection, OAST callbacks via Interactsh, flow diffing, and WebSocket interception. Workflow modes guide agents toward collaborative testing while humans handle authentication and UI interactions.

No Package No Dependents
Maintenance 13 / 25
Adoption 5 / 25
Maturity 9 / 25
Community 14 / 25

How are scores calculated?

Stars

10

Forks

3

Language

Go

License

MIT

Category

security-testing-mcp

Last pushed

Mar 09, 2026

Commits (30d)

0

GitHub
Security Testing MCP · 268 servers

Get this data via API

curl "https://pt-edge.onrender.com/api/v1/quality/mcp/go-appsec/toolbox"

Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.

Higher-rated alternatives

0x4m4/hexstrike-ai

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot,...

66

panther-labs/mcp-panther

Write detections, investigate alerts, and query logs from your favorite AI agents

60

duriantaco/skylos

High-precision Python SAST & Dead Code Remover. Finds unused functions, secrets, and security...

60

msaad00/agent-bom

Security scanner for AI infrastructure — CVEs, blast radius, credential exposure, runtime...

60

Wh0am123/MCP-Kali-Server

MCP configuration to connect AI agent to a Linux machine.

60

Explore MCP Servers

All categories Trending MCP Server directory Insights