MCPwner
by Pigyon
Model Context Protocol server for autonomous vulnerability discovery
No known CVEs
Apache-2.0 license
Maintained
Last commit 59d ago
Works with most clients
Transport: stdio, sse, http
33 tools · ~1.2k tok
Grade B · 0.6% of 200K ctx
Step 1
Install in your client
Config is the same across clients — only the file and path differ.
CD
Supported in Claude Desktopstdio, sse, http · Node 18+
Paste into ~/Library/Application Support/Claude/claude_desktop_config.json
{
"mcpServers": {
"mcpwner": {
"env": {},
"args": [
"exec",
"-i",
"mcpwner-server",
"python",
"src/server.py"
],
"command": "docker"
}
}
}Are you the author?
Add this badge to your README to show your security score and help users find safe servers.
Embed in your READMEAbout badges →
[](https://mcppedia.org/s/mcpwner)
Read me
What MCPwner does
MCPwner is a Model Context Protocol (MCP) server that integrates security testing tools into LLM-driven workflows. It provides a unified interface for secret scanning, static analysis (SAST), software composition analysis (SCA), reconnaissance, dynamic application security testing (DAST), and vulnerability research including 0-day discovery.
Test This Server
No automated test available for this server. Check the GitHub README for setup instructions.
Loading README…
Scored, not listed
Why this score
Five weighted categories — click any category to see the underlying evidence.
Score breakdown
63/100across 5 weighted dimensions
0255075100
14
8
16
15
10
−37
Security
Maintenance
Efficiency
Documentation
Compatibility
Categoriesclick a row to see evidence
Security
OSV.devNo known CVEs.
No package registry to scan.
Inventory
Tools (33)
Click any tool to inspect its schema.
~1.2k tokens total
Community
Reviews
Be the first to review
Have you used this server?
Share your experience — it helps other developers decide.
How easy was setup?Did it work reliably?How was the documentation?
Sign in to write a review.
Frequently Asked Questions
- Is MCPwner safe to use?
- MCPwner has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.
- How do I install MCPwner?
- MCPwner supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
- What can MCPwner do?
- MCPwner provides 33 tools: Note, Extensible, create_workspace, list_workspaces, cleanup_workspace and 28 more. See the full tools list on the server page for descriptions and parameters.
- What AI clients work with MCPwner?
- MCPwner is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
- Is MCPwner actively maintained?
- MCPwner is recently maintained — last commit was 59 days ago. It has 52 GitHub stars.
Related
Similar servers
Others in security
Evil Mcp Server93An evil MCP server used for redteam testing
30 1
Ida Pro Mcp92AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.
9.0k 3
I
io.github.jasonxkensei/xproof92Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.
1 1
Nothumanallowed91Security-first platform for AI agents. 38 specialized agents, 15 AI-powered extensions, zero-knowledge multi-agent orchestration. SENTINEL WAF, Ed25519 auth, 2.6M grounding facts.
97 5
MCP Security Weekly
Get CVE alerts and security updates for MCPwner and similar servers.
Community
Discussion
Start a conversation
Ask a question, share a tip, or report an issue.
Has anyone used this with Cursor?How do you handle auth?Any alternatives?
Sign in to join the discussion.
| 
| 
| 
| <img src="readme/a