mcp-contrast

Contrast-Security-OSS/mcp-contrast

3.4
securitycloud_platformsdeveloper_tools

If you are the rightful owner of mcp-contrast and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.

Contrast MCP Server is designed to help developers and security professionals quickly remediate vulnerabilities using Contrast's unique vulnerability data combined with LLM and coding agents.

Tools

Functions exposed to the LLM to take actions

list_application_libraries_by_app_id

Takes a application ID and returns the libraries used in the application, note if class usage count is 0 the library is unlikely to be used

get_ADR_Protect_Rules

takes a application name and returns the protect / adr rules for the application

get_application_route_coverage_by_app_id

takes a application id and return the route coverage data for that application. If a route/endpoint is DISCOVERED, it means it has been found by Assess but that route has had no inbound http requests. If it is EXERCISED, it means it has had atleast one inbound http request to that route/endpoint.

list_session_metadata_for_application

Takes an application name ( app_name ) and returns a list of session metadata for the latest session matching that application name. This is useful for getting the most recent session metadata without needing to specify session metadata.

get_applications_by_tag

Takes a tag name and returns a list of applications that have that tag.

list_Scan_Results

takes a scan project name and returns the latest results in Sarif format

get_application_route_coverage_by_app_name_latest_session

takes a application name and return the route coverage data for that application from the latest session. If a route/endpoint is DISCOVERED, it means it has been found by Assess but that route has had no inbound http requests. If it is EXERCISED, it means it has had atleast one inbound http request to that route/endpoint.

list_Scan_Project

takes a scan project name and returns the project details

list_vulnerabilities

Takes an application name ( app_name ) and returns a list of vulnerabilities, please remember to include the vulnID in the response.

get_vulnerability_by_id

takes a vulnerability ID ( vulnID ) and Application ID ( appID ) and returns details about the specific security vulnerability. If based on the stacktrace, the vulnerability looks like it is in code that is not in the codebase, the vulnerability may be in a 3rd party library, review the CVE data attached to that stackframe you believe the vulnerability exists in and if possible upgrade that library to the next non vulnerable version based on the remediation guidance.

list_application_libraries

takes a application name and returns the libraries used in the application, note if class usage count is 0 the library is unlikely to be used

get_ADR_Protect_Rules_by_app_id

takes a application ID and returns the protect / adr rules for the application

list_vulnerabilities_by_application_and_latest_session

Takes an application name ( app_name ) and returns a list of vulnerabilities for the latest session matching that application name. This is useful for getting the most recent vulnerabilities without needing to specify session metadata.

get_applications_by_metadata_name

Takes a metadata name a list of applications that have that metadata name.

get_vulnerability

Takes a vulnerability ID (vulnID) and application name (app_name) and returns details about the specific security vulnerability. If based on the stacktrace, the vulnerability looks like it is in code that is not in the codebase, the vulnerability may be in a 3rd party library, review the CVE data attached to that stackframe you believe the vulnerability exists in and if possible upgrade that library to the next non vulnerable version based on the remediation guidance.

list_applications_with_name

Takes an application name (app_name) returns a list of active applications that contain that name. Please remember to display the name, status and ID.

list_vulnerabilities_by_application_and_session_metadata

Takes an application name ( app_name ) and session metadata in the form of name / value. and returns a list of vulnerabilities matching that application name and session metadata.

get_applications_by_metadata

Takes a metadata name and value and returns a list of applications that have that metadata name value pair.

list_vulnerabilities_with_id

Takes a Application ID ( appID ) and returns a list of vulnerabilities, please remember to include the vulnID in the response.

get_application_route_coverage_by_app_name_and_session_metadata

takes a application name and return the route coverage data for that application for the specified session metadata name and value. If a route/endpoint is DISCOVERED, it means it has been found by Assess but that route has had no inbound http requests. If it is EXERCISED, it means it has had at least one inbound http request to that route/endpoint.

list_applications_vulnerable_to_cve

takes a cve id and returns the applications and servers vulnerable to the cve. Please note if the application class usage is 0, its unlikely to be vulnerable

get_application_route_coverage_by_app_id_latest_session

takes a application id and return the route coverage data for that application from the latest session. If a route/endpoint is DISCOVERED, it means it has been found by Assess but that route has had no inbound http requests. If it is EXERCISED, it means it has had atleast one inbound http request to that route/endpoint.

get_application_route_coverage_by_app_id_and_session_metadata

takes a application id and return the route coverage data for that application for the specified session metadata name and value. If a route/endpoint is DISCOVERED, it means it has been found by Assess but that route has had no inbound http requests. If it is EXERCISED, it means it has had at least one inbound http request to that route/endpoint.

list_all_applications

Takes no argument and list all the applications

get_application_route_coverage

takes a application name and return the route coverage data for that application. If a route/endpoint is DISCOVERED, it means it has been found by Assess but that route has had no inbound http requests. If it is EXERCISED, it means it has had atleast one inbound http request to that route/endpoint.

Prompts

Interactive templates invoked by user choice

No prompts

Resources

Contextual data attached and managed by the client

No resources

Related MCP Servers

View all security servers →
better-auth-mcp-server

better-auth-mcp-server

4.3

by nahmanmate

MCP Server for Authentication Management

security
apktool-mcp-server

apktool-mcp-server

4.3

by zinja-coder

apktool-mcp-server is a fully automated MCP server built on top of apktool to analyze Android APKs using LLMs like Claude, providing live reverse engineering support.

security
mcp

mcp

3.8

by semgrep

Semgrep MCP Server is a Model Context Protocol server that uses Semgrep to scan code for security vulnerabilities.

security
enrichmcp

enrichmcp

3.7

by featureform

MCPEngine is a production-grade, HTTP-first implementation of the Model Context Protocol (MCP), providing a secure, scalable, and modern framework for exposing data, tools, and prompts to Large Language Models (LLMs) via MCP.

developer_tools
win-cli-mcp-server

win-cli-mcp-server

3.7

by simon-ami

The Windows CLI MCP Server is a deprecated project designed for secure command-line interactions on Windows systems, providing controlled access to various shells and remote systems via SSH.

os_automation
volatility3-mcp

volatility3-mcp

3.6

by Kirandawadi

Volatility3 MCP Server is a tool that integrates MCP clients with the Volatility3 memory forensics framework, enabling LLMs to perform memory forensics tasks through a conversational interface.

security
obsidian-mcp-tools

obsidian-mcp-tools

3.6

by jacksteamdev

MCP Tools for Obsidian enables AI applications like Claude Desktop to securely access and work with your Obsidian vault through the Model Context Protocol (MCP).

ai_chatbot
code-sandbox-mcp

code-sandbox-mcp

3.6

by Automata-Labs-team

A secure sandbox environment for executing code within Docker containers. This MCP server provides AI applications with a safe and isolated environment for running code while maintaining security through containerization.

security
ida-mcp-server-plugin

ida-mcp-server-plugin

3.6

by taida957789

IDA Pro MCP Server is a plugin that allows remote querying and control of IDA Pro through the Model Context Protocol (MCP) interface.

developer_tools
dynatrace-mcp

dynatrace-mcp

3.5

by dynatrace-oss

This remote MCP server allows interaction with the Dynatrace observability platform, bringing real-time observability data directly into your development workflow.

monitoring
mcp-virustotal

mcp-virustotal

3.5

by BurtTheCoder

The VirusTotal MCP Server is a Model Context Protocol server designed for querying the VirusTotal API, providing comprehensive security analysis tools with automatic relationship data fetching.

security
MCP2Lambda

MCP2Lambda

3.5

by danilop

MCP2Lambda allows LLMs to interact with AWS Lambda functions as tools, enabling access to real-time and private data, execution of custom code, and interaction with external services.

cloud_platforms
mcp-server-wazuh

mcp-server-wazuh

3.5

by gbrigandi

A Rust-based server designed to bridge the gap between a Wazuh Security Information and Event Management (SIEM) system and applications requiring contextual security data, specifically tailored for the Claude Desktop Integration using the Model Context Protocol (MCP).

security
zionfhe_mcp_server_test

zionfhe_mcp_server_test

3.5

by joyecai

Zionfhe_mcp_server_test is a server implementation based on the new homomorphic encryption technology ZIONFHE, designed to provide secure computation capabilities.

security
Wazuh-MCP-Server

Wazuh-MCP-Server

3.5

by gensecaihq

Wazuh MCP Server is an AI-powered security operations platform that integrates conversational AI with traditional SIEM operations.

security
web3-mcp

web3-mcp

3.5

by strangelove-ventures

A Model-Context-Protocol server for interacting with multiple blockchains including Solana, Ethereum, THORChain, XRP Ledger, TON, Cardano, and UTXO chains.

finance
chucknorris

chucknorris

3.5

by pollinations

The C̷h̷u̷c̷k̷N̷o̷r̷r̷i̷s̷ MCP Server is a tool designed to enhance LLMs using specialized prompts and dynamic schema adaptation, primarily for security research.

security
jadx-mcp-plugin

jadx-mcp-plugin

3.5

by mobilehackinglab

The Jadx MCP Plugin provides a Java-based plugin for Jadx, exposing its API over HTTP to enable interaction with MCP clients like Claude, facilitating AI-assisted security analysis of Android apps.

security
mythic_mcp

mythic_mcp

3.5

by xpn

Mythic MCP is a model context protocol server designed to facilitate automated penetration testing using LLMs.

security
GhidraMCP

GhidraMCP

3.5

by 13bm

A Ghidra plugin that implements the Model Context Protocol (MCP) for AI-assisted binary analysis.

developer_tools
mcp-security-audit

mcp-security-audit

3.5

by qianniuspace

A powerful MCP (Model Context Protocol) Server that audits npm package dependencies for security vulnerabilities.

security
Snyk

Snyk

3.5

by snyk

MCP (Model Context Protocol) is an open protocol that standardizes how applications share context with large language models.

security
mcp-dnstwist

mcp-dnstwist

3.5

by BurtTheCoder

DNStwist MCP Server is a Model Context Protocol server for the DNStwist tool, designed to detect typosquatting and phishing domains.

security
codacy-mcp-server

codacy-mcp-server

3.5

by codacy

MCP Server for the Codacy API, enabling access to repositories, files, quality, coverage, security and more.

security
ExternalAttacker-MCP

ExternalAttacker-MCP

3.5

by MorDavid

ExternalAttacker is a Model Context Protocol (MCP) server designed for external attack surface management, integrating automated scanning with a natural language interface.

security
mcp-oauth2-aws-cognito

mcp-oauth2-aws-cognito

3.5

by empires-security

This repository demonstrates how to secure a Model Context Protocol (MCP) server using OAuth 2.1 authorization flows with AWS Cognito, implemented entirely with Node.js and Express.js.

security
mcp-sentry

mcp-sentry

3.5

by MCP-100

mcp-sentry is a Model Context Protocol server designed to retrieve and analyze issues from Sentry.io, providing tools to inspect error reports, stacktraces, and other debugging information.

security