Security & Auth MCP servers let an AI assistant do real security work instead of giving generic advice. Once connected, the assistant can scan code for secrets and risky flows, inspect packages for supply chain threats, query threat intelligence, review email authentication reports, manage identity providers, and pull data from physical access or enterprise security systems. That means you can investigate suspicious infrastructure, debug authentication setups, review exposure from a dependency change, or audit security posture from the same chat where you write code and operate systems.
This category is most useful for application developers, platform teams, DevSecOps engineers, IT admins, and security analysts who need fast answers tied to live systems. It is also useful for teams adopting AI tools inside real environments, where the assistant needs guardrails before it can touch sensitive tools or data. The best servers in this category help the assistant produce evidence-backed results, enforce policy, and work against current security data instead of stale documentation or pasted logs.
“Scan this dependency update for malicious packages and explain which imports violate our supply chain policy using vet-mcp.”
viavet-mcp“Analyze this repository for hardcoded secrets, dead code, and exploitable flows before I merge the branch using skylos.”
viaskylos“Hunt for connections related to this suspicious IP across our linked security data sources and summarize the findings using crowdsentinel-mcp-server.”
viacrowdsentinel-mcp-server“Look up this public IP, list exposed services, and flag any known CVEs tied to it using shodan.”
viashodan| # | Server | Stars |
|---|---|---|
| 1 | SafeDep Vet MCP The MCP server runs the 'vet' tool, which provides real-time malicious package detection and software supply chain security by analyzing code usage and enforcing security policies. | 1.0k |
| 2 | Skylos Skylos is an open-source static analysis tool that detects dead code, hardcoded secrets, exploitable flows, and AI-generated security regressions in Python, TypeScript, and Go. It can be run locally or integrated into CI/CD workflows to gate pull requests. |
It gives the assistant direct access to security tools and data sources such as static analysis scanners, threat intel APIs, identity platforms, DMARC reports, and security investigation systems. The assistant can then run checks, query live data, and perform approved admin actions inside the conversation.
No. Developers use them to catch secrets, vulnerable packages, and auth misconfigurations before merge. Platform and IT teams use them to manage identity settings, review access systems, and investigate infrastructure exposure without switching between dashboards.
Scanners inspect code, packages, domains, files, or telemetry and return findings. Gateways and guardrail tools sit in front of MCP tool usage and block unsafe actions, malicious servers, prompt injection attempts, or risky package installs before the assistant executes anything.
Confirm whether the server supports read-only mode, scoped credentials, and action logging. Use the smallest permission set possible, keep high-risk actions behind approval, and prefer servers that make every tool call auditable.
414 servers
safedep
Protect your AI agents and IDEs from malicious open-source packages.
duriantaco
Dead code, security, secrets detection and code quality for Python, TypeScript, Go.
sirkirby
Manage UniFi Access doors, credentials, policies, visitors, and events via MCP.
thomasxm
AI-powered threat hunting and incident response MCP server for Elasticsearch/OpenSearch
smart-mcp-proxy
Smart MCP proxy with BM25 tool discovery, quarantine security, and ~99% token savings
BurtTheCoder
MCP server for Shodan API — device search, IP lookup, DNS, and CVE/CPE queries.
BurtTheCoder
MCP server for querying VirusTotal API with comprehensive security analysis tools.
meysam81
Lightweight DMARC parser: auto-fetch email reports, visualize compliance in a single all-in-one app
auth0
Auth0 MCP Server: Manage Auth0 applications, APIs, actions, logs, and forms using natural language
sinewaveai
Security layer for AI agents: blocks prompt injection, detects fake packages, scans vulnerabilities.
bx33661
Professional network analysis with tshark. Security audits, deep-dives, and threat detection.
snyk
Easily find and fix security issues in your applications leveraging Snyk platform capabilities.
sonatype
Sonatype component intelligence: versions, security analysis, and Trust Score recommendations
imran-siddique
Build and manage policy-compliant AI agents with safety enforcement and compliance checking
jnmetacode
AI agent security: 7 MCP tools for injection detection, PII scanning, command safety, DLP.
Pantheon-Security
Security-hardened NotebookLM MCP with post-quantum encryption
ariffazil
Constitutional AI Governance with 13 enforced floors (F1-F13) and tri-witness consensus for LLMs.
ariffazil
Constitutional AI governance server with 5-organ Trinity and enforced floors F1-F13.
gebalamariusz
AWS security scanner with Attack Chains, Breach Cost Estimation, and MCP Server for AI agents.
kastelldev
Server security audit (413 checks), hardening, and fleet management across 4 cloud providers.
microsoft
Official Microsoft MCP Server to query Microsoft Entra data using natural language
raullenchai
Ephemeral encrypted file sharing for AI. AES-256 encryption, 24h auto-vaporization.
awslabs
AI agent tools for Open Security Controls Assessment Language (OSCAL)
mcpcap
An MCP server for analyzing PCAP files.
johnzfitch
Token-efficient Ghidra RE: decompile, xrefs, Swift/ObjC, ELF/Mach-O, async analysis
prismer-ai
MCP server exposing Signet cryptographic signing, verification, and content hash tools over stdio.
rsdouglas
Secure secrets proxy for AI agents — manages API keys so agents never see raw credentials.
zscaler
Manage Zscaler Zero Trust Exchange via 280+ tools — ZPA, ZIA, ZDX, ZCC, EASM, and more.
nirholas
Analyze repos of any size - security scanning code analysis monorepo support
sentinel-gate
Open-source MCP proxy for AI agent access control with CEL policies, RBAC, and audit.
mishrasanjeev
OAuth 2.0 for AI agents — scoped delegation tokens, audit trails, and revocation.
nslookup-io
DNS lookups, health reports, SSL certs, security scans, GEO scoring, uptime checks
nirholas
Sign Ethereum messages - EIP-191, EIP-712 typed data, Permit2, signature verification and recovery
ethanolivertroy
Query FedRAMP 20x KSIs, NIST controls, and compliance docs via 20 MCP tools.
nirholas
Encrypt/decrypt Ethereum keystore JSON V3 with scrypt/PBKDF2 for secure cold storage
stanfrbd
MCP server for Cyberbro IOC extraction, enrichment and reputation analysis.
nirholas
Validate Ethereum addresses, keys, checksums, keccak256 hashes, function selectors, ENS
upinar
29 security tools for AI agents — CVE, OSINT, threat intel, code security. No API key needed.
Nekzus
Advanced NPM analysis: Recursive security scanning, ecosystem awareness, and deep insights.
agentsafe-ai
Scans MCP servers for prompt injection, data exfiltration, and privilege escalation.
vibetensor
AI agent identity, W3C credentials, EU AI Act compliance. 47 MCP tools.
openfused
Encrypted mail, shared memory, and persistent context for AI agents.
“Pull the VirusTotal report for this domain and summarize malicious relationships, recent detections, and reputation changes using virustotal.”
viavirustotal“Parse the latest DMARC reports from our inbox and tell me which senders are failing alignment for our domain using parse-dmarc.”
viaparse-dmarc“Create a new Auth0 application for our staging environment, attach the correct callback URLs, and show recent login errors using mcp-auth0.”
viamcp-auth0| 3 | UniFi Access MCP UniFi MCP is a collection of servers that enable AI assistants and automation tools to interact with Ubiquiti UniFi controllers, targeting specific applications like Network, Protect, and Access. | 243 |
| 4 | Crowdsentinel Mcp Server CrowdSentinel MCP Server is an open-source threat hunting orchestrator that connects large language models to enterprise security data via the Model Context Protocol (MCP). It enables natural language querying and AI-guided investigation workflows. | 202 |
| 5 | Mcpproxy Go MCPProxy is an open-source desktop application that enhances AI agents by enabling intelligent tool discovery and providing security against malicious MCP servers. | 182 |
| 6 | Shodan This MCP server provides access to the Shodan API and CVEDB for querying network intelligence and security services, including IP reconnaissance, DNS operations, vulnerability tracking, and device discovery. | 121 |
| 7 | Virustotal This MCP server allows users to query the VirusTotal API for comprehensive security analysis, including URL, file, IP, and domain reports with automatic relationship data fetching. | 117 |
| 8 | Parse-DMARC MCP Server Parse DMARC automatically fetches and parses DMARC reports from your email inbox, displaying the information in a user-friendly dashboard. | 113 |
| 9 | Auth0 MCP Server The Auth0 MCP Server allows integration with large language models and AI agents to perform various Auth0 management operations using natural language commands. It enables users to manage applications, deploy actions, and debug logs without using the Auth0 dashboard. | 100 |
| 10 | Agent Security Scanner Mcp Security layer for AI agents: blocks prompt injection, detects fake packages, scans vulnerabilities. | 92 |