Security & Testing MCP Servers

WASMPython Runner

Executes Python code safely within a Docker image, designed for use with MCP servers.

GitHub Security

Provides GitHub API tools for user information, security issue creation, and repository security scanning.

Code Review

Provides specialized code review capabilities leveraging established critic methodologies and fixing strategies for VS Code Copilot.

Filesystem

Enables sandboxed and secure programmatic access to filesystem operations.

Claude TestGen

Generates test scenarios from user stories by integrating with the Claude desktop interface.

Vendor Risk Assessment

Assess and compare vendor risks using AI-powered insights from AWS Titan.

Test Remote

Provides a remote endpoint for validating MCP server interactions.

SonarQube

Integrates AI assistants with SonarQube to enable natural language interaction for code quality analysis, project management, and security insights.

Ktor OAuth Template

Provides a production-ready, OAuth-protected server template for AI clients like Claude.

Lex

Provides AI agents with episodic memory and architectural awareness to prevent context loss in long-running development workflows.

PDF Reader

Decipher PDF internal structures and extract detailed document information through a suite of specialized tools.

Kali Defense

Provides over 130 defensive security tools for Linux system hardening, compliance, and incident response, designed exclusively for blue team operations.

Firm

Bridges VS Code Copilot agents to the Firm Gateway ecosystem, providing a comprehensive suite of tools for automation, security, and compliance.

Autonomous Cyber Red Team

Automates red team reconnaissance, attack surface mapping, vulnerability scanning, and security posture assessment.

Cloud Agent

Integrates an AI software engineer to automate coding tasks, perform code reviews, generate tests, and conduct security scans for GitHub repositories.

Otparse

Dissects Modbus/TCP and BACnet/IP traffic from saved OT/ICS packet captures to generate structured JSON containing decoded transactions and a basic device inventory.

Dependency-Track

Provides a Model Context Protocol server exposing a practical subset of the OWASP Dependency-Track REST API over stdio.

Wire

Establishes a self-hosted WireGuard mesh VPN with auto-discovery, NAT traversal, and AI-managed topology for secure and resilient networking.

Black Duck

Enables AI assistants to query component vulnerabilities and identify safe upgrade paths using Black Duck Software Composition Analysis.

Tech Ecosystem Analysis

Analyzes tech ecosystems for AI agents and LLM workflows by mapping technology relationships, tracking adoption, detecting CVEs, and scoring tech stack risk across six live data sources.