Loading MCP server directory, please wait...
Passive external attack-surface mapping: CT subdomains, DNS, TLS, HTTP posture, RDAP/WHOIS, Shodan.
npx @getmcp/cli add io.github.cyanheads/attack-surface-mcp-serverRequires Node.js 18+. Community-contributed server. Review source before installing.
Config file: ~/Library/Application Support/Claude/claude_desktop_config.json
{
"mcpServers": {
"io.github.cyanheads/attack-surface-mcp-server": {
"command": "bun",
"args": [
"@cyanheads/attack-surface-mcp-server",
"run",
"start:stdio"
],
"env": {
"SHODAN_API_KEY": "",
"CERTSPOTTER_API_KEY": "",
"ATTACKSURFACE_DEFAULT_RESOLVERS": "8.8.8.8,1.1.1.1,9.9.9.9",
"ATTACKSURFACE_HTTP_USER_AGENT": "",
"ATTACKSURFACE_MAX_SUBDOMAINS": "200",
"ATTACKSURFACE_RDAP_BOOTSTRAP_URL": "https://rdap.org",
"ATTACKSURFACE_ALLOW_PRIVATE_TARGETS": "false",
"MCP_LOG_LEVEL": "info"
}
}
}
}Identity, trust, and A2A orchestration for autonomous AI agents. Official A2A partner.
Presentations.AI MCP server — create designed slide decks from a topic, text, or document.
Free IPv4 lookups against a distributed attacker-observation corpus.
MCP server for the SCF Controls Platform — 72 tools for controls, evidence, risk, and TPRM.