MCP-Scan

MCP-Scan

MCP-Scan is a security scanning tool designed to identify common security vulnerabilities in MCP servers, including:

Key Features:

• Security Vulnerability Scanning: Checks MCP servers for issues like prompt injections and tool poisoning.
• Local and API Checks: Combines local checks with API calls to Invariant Guardrails for enhanced security assessment.
• Detailed Command Options: Users can execute scans, inspect configurations, and manage whitelists effortlessly.

Benefits:

• User Data Privacy: Does not store user data; only tool descriptions are shared for research purposes.
• Comprehensive Coverage: Scans configurations for vulnerabilities and allows inspection of tool descriptions without verification.
• Community Contributions: Open for contributions, making it a collaborative tool for developers.

Highlights:

• Active GitHub repository with regular updates and community involvement.
• Easy-to-use CLI with flexible command options to suit various user needs.