SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context Protocol (MCP)](https://modelcontextprotocol.io/introduction). It proactively identifies threats like OAuth token leakage, prompt injection vulnerabilities, rogue MCP servers, and tool poisoning attacks.
☆140Jun 7, 2025Updated last year
Alternatives and similar repositories for SecureMCP
Users that are interested in SecureMCP are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…☆135Jun 22, 2026Updated last week
- Manage / Proxy / Secure your MCP Servers☆200Aug 8, 2025Updated 10 months ago
- MCP security wrapper☆222Apr 14, 2026Updated 2 months ago
- Unauthenticated enumeration of AWS IAM Roles.☆28Apr 18, 2026Updated 2 months ago
- A comprehensive framework and assessment toolkit for measuring and improving Cloud Native security maturity across 8 critical business fu…☆10Jun 24, 2025Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A series of tutorials and sketches pulled from various sources and modified for the Thotcon 0xA conference badge.☆15May 3, 2019Updated 7 years ago
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆69Nov 27, 2025Updated 7 months ago
- Zero Trust Agent☆57Mar 28, 2026Updated 3 months ago
- Touti Cracker is a cross-platform ethical hacking toolkit for educational purposes, featuring password cracking, WiFi auditing, and rever…☆51Apr 6, 2026Updated 2 months ago
- ZAP scripts to implement ASVS L1 checking☆17Apr 28, 2022Updated 4 years ago
- Advanced kernel-native security framework to disrupt and prevent DNS-based breaches including C2 channels and tunneling with zero data lo…☆31Jun 21, 2026Updated last week
- SAMMY Open Source v2☆14Feb 6, 2025Updated last year
- Harness the security superpowers of your cloud asset inventory☆11Sep 22, 2024Updated last year
- Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.☆173Mar 5, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- PoC shadow SaaS and insecure credential detection system using a browser extension.☆45May 8, 2026Updated last month
- This is a sample solution that demonstrates how to use AWS IAM Identity Center with Neptune to visualize and map relationships between id…☆36Nov 27, 2025Updated 7 months ago
- An OpenAI API Compatible Honeypot Gateway☆26Mar 17, 2025Updated last year
- Open source templates you can use to bootstrap your security programs☆908Dec 28, 2025Updated 6 months ago
- HaveIBeenPwned Password Policy for Keycloak PoC☆12Jan 22, 2019Updated 7 years ago
- German translation of the Microsoft Elevation of Privilege card game along with notes and examples☆10Jan 9, 2016Updated 10 years ago
- Feed it a number. Your cloned voice does the social engineering, while you sip your coffee. A ghost that talks on the phone for you.☆114May 30, 2025Updated last year
- 💅🏽 analyzes your github actions☆100May 8, 2026Updated last month
- Collect IAM information from all your AWS organization, accounts, and resources.☆87Jun 27, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Convert your HackerOne reports into reusable AI skills.☆103Mar 9, 2026Updated 3 months ago
- A public collection of detections designed to detect threats associated with the Okta WIC Platform.☆28May 19, 2026Updated last month
- Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution☆20Sep 2, 2015Updated 10 years ago
- Automated Cloud Misconfiguration Testing☆26Jun 20, 2025Updated last year
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms (like Hackerone/Bugcro…☆85Jun 26, 2026Updated last week
- An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRI…☆1,068Updated this week
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents☆68May 1, 2025Updated last year
- A curated list of Awesome Security Challenges.☆211Nov 6, 2024Updated last year
- Lightweight macOS detection agent built on Santa’s Endpoint Security telemetry.☆113Dec 3, 2025Updated 7 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Nakamoto is a 2 layer encryption tool to protect your data and your cyptocurrency☆16May 2, 2026Updated 2 months ago
- Impacket☆50Feb 25, 2026Updated 4 months ago
- Elevation of MLsec: a threat-modeling card game for machine learning systems☆34Nov 24, 2025Updated 7 months ago
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆103May 1, 2026Updated 2 months ago
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆92Jan 8, 2025Updated last year
- A functional type system for policy inspection, audit and enforcement.☆14Aug 17, 2023Updated 2 years ago
- CredData is a set of files including credentials in open source projects. CredData includes suspicious lines with manual review results a…☆92Jun 19, 2026Updated 2 weeks ago