knostic/MCP-Scanner
Advanced Shodan-based scanner for discovering, verifying, and enumerating Model Context Protocol (MCP) servers and AI infrastructure tools over HTTP & SSE.
This tool helps security professionals identify and analyze publicly accessible Model Context Protocol (MCP) servers and associated AI infrastructure. It takes a Shodan API key as input to search for MCP servers, then verifies their protocol compliance and enumerates their capabilities. The output includes detailed JSON and CSV reports, along with a human-readable summary, enabling cybersecurity teams to assess the security posture of AI deployments.
Use this if you are a security researcher, penetration tester, or part of a cybersecurity team needing to discover, verify, and assess the security of Model Context Protocol (MCP) servers and AI infrastructure for data governance, attack surface management, or compliance.
Not ideal if you are looking for a general-purpose network scanner or if your goal is to test systems without explicit authorization.
Stars
37
Forks
7
Language
Python
License
MIT
Category
Last pushed
Mar 11, 2026
Commits (30d)
0
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/mcp/knostic/MCP-Scanner"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Higher-rated alternatives
Wh0am123/MCP-Kali-Server
MCP configuration to connect AI agent to a Linux machine.
DMontgomery40/pentest-mcp
NOT for educational purposes: An MCP server for professional penetration testers including...
BurtTheCoder/mcp-shodan
MCP server for Shodan — search internet-connected devices, IP reconnaissance, DNS lookups, and...
cyproxio/mcp-for-security
MCP for Security: A collection of Model Context Protocol servers for popular security tools like...
0x4m4/hexstrike-ai
HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot,...