MCP-Scan
MCP-Scan is a security scanning tool designed to analyze MCP servers for common vulnerabilities, including prompt injections, tool poisoning, and cross-origin escalations. It connects to configured MCP servers, retrieves tool descriptions, and scans them for security risks using local checks and remote verification via Invariant Guardrails. It helps ensure the security and integrity of MCP-based systems by detecting potential attack vectors and malicious configurations.
Added on:
Created by:
Apr 28 2025
MCP-Scan is a security scanning tool designed to analyze MCP servers for common vulnerabilities, including prompt injections, tool poisoning, and cross-origin escalations. It connects to configured MCP servers, retrieves tool descriptions, and scans them for security risks using local checks and remote verification via Invariant Guardrails. It helps ensure the security and integrity of MCP-based systems by detecting potential attack vectors and malicious configurations.
Added on:
Created by:
Apr 28 2025
Invariant Labs
Featured
What is MCP-Scan?
MCP-Scan is a comprehensive security scanner focused on Model Context Protocol (MCP) servers. It inspects your installed MCP server configurations, connects to these servers, and retrieves detailed descriptions of their tools. The scanner then analyzes these descriptions for common security issues such as prompt injections, tool poisoning, cross-origin escalations, and MCP rug pull attacks. It utilizes both local checks and remote verification with Invariant Guardrails, sharing minimal data about tools for security analysis. MCP-Scan helps developers and security teams monitor and secure their MCP ecosystems by offering in-depth scans, vulnerability detection, and tool inspection capabilities, ensuring safer and more reliable MCP deployments.
Who will use MCP-Scan?
- Security researchers
- DevOps teams managing MCP server environments
- Developers deploying MCP applications
- Security auditors
How to use the MCP-Scan?
- Step1: Install MCP-Scan via the provided command or package manager.
- Step2: Configure MCP server addresses in the configuration file if necessary.
- Step3: Run a default scan using `mcp-scan` to analyze MCP servers for vulnerabilities.
- Step4: Review the scan reports for detected issues and possible vulnerabilities.
- Step5: Use the inspect command to analyze specific tools or prompts.
- Step6: Manage the whitelist to approve or exclude trusted tools or entities.
MCP-Scan's Core Features & Benefits
The Core Features
- Scan MCP configurations for security vulnerabilities
- Inspect tool descriptions
- Manage whitelist of trusted entities
- Detect prompt injection and tool poisoning
- Identify cross-origin escalation attacks
- Tool pinning for detecting MCP rug pulls
The Benefits
- Enhances MCP ecosystem security
- Automates vulnerability detection
- Provides detailed insights into MCP tool configurations
- Reduces risk of security breaches
- Supports compliance and security audits
MCP-Scan's Main Use Cases & Applications
- Security auditing of MCP-based AI environments
- Monitoring MCP server integrity over time
- Pre-deployment security assessments of MCP configurations
- Incident response by identifying malicious or compromised tools
- Automated security verification in CI/CD pipelines
FAQs of MCP-Scan
Developer
- invariantlabs-ai
You may also like:
Developer Tools
A desktop application for managing server and client interactions with comprehensive functionalities.
A Model Context Protocol server for Eagle that manages data exchange between Eagle app and data sources.
A chat-based client that integrates and uses various MCP tools directly within a chat environment for enhanced productivity.
A Docker image hosting multiple MCP servers accessible through a unified entry point with supergateway integration.
Provides access to YNAB account balances, transactions, and transaction creation through MCP protocol.
A fast, scalable MCP server for managing real-time multi-client Zerodha trading operations.
A remote SSH client facilitating secure, proxy-based access to MCP servers for remote tool utilization.
A Spring-based MCP server integrating AI capabilities for managing and processing Minecraft mod communication protocols.
A minimalistic MCP client with essential chat features, supporting multiple models and contextual interactions.
A secure MCP server enabling AI agents to interact with Authenticator App for 2FA codes and passwords.
Research And Data
A server implementation supporting Model Context Protocol, integrating CRIC's industrial AI capabilities.
Provides real-time traffic, air quality, weather, and bike-sharing data for Valencia city in a unified platform.
A React application demonstrating integration with Supabase via MCP tools and Tambo for UI component registration.
A MCP client integrating Brave Search API for web searches, utilizing MCP protocol for efficient communication.
A protocol server enabling seamless communication between Umbraco CMS and external applications.
NOL integrates LangChain and Open Router to create a multi-client MCP server using Next.js
Connects LLMs to Firebolt Data Warehouse for autonomous querying, data access, and insight generation.
A client framework for connecting AI agents to MCP servers, enabling tool discovery and integration.
Spring Link facilitates linking and managing multiple Spring Boot applications efficiently within a unified environment.
An open-source client to interact with multiple MCP servers, enabling seamless tool access for Claude.
Security
A Python-based MCP server enabling secure management and automation of OPNsense firewalls via API.
Enables interaction with SharePoint Online via REST API, supporting site, list, and user management functions.
A MCP server wrapper enabling full protocol utilization without tool limits or context overload.
A wrapper around MCP server to select which tools to expose to mcp clients, enhancing control and safety.
Securely run MCP servers without modifying configs by managing secrets safely through the launcher.
An advanced SSH client supporting MCP with security checks, session management, and confidential logging features.
Provides secure, relative filesystem access for AI agents with batch operations and detailed error reporting.
A client for connecting to MCP servers, enabling AI agents to discover and utilize tools via MCP protocol.
A server for sending notifications to self-hosted ntfy servers with secure token authentication support.
A client application for secure quantum-safe interactions with MCP environments using post-quantum cryptography.