Is Roadrecon_mcp_server safe to use?

Roadrecon_mcp_server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.

How do I install Roadrecon_mcp_server?

Roadrecon_mcp_server can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with Roadrecon_mcp_server?

Roadrecon_mcp_server is compatible with claude-desktop, cursor, claude-code. It uses sse transport.

Is Roadrecon_mcp_server actively maintained?

Roadrecon_mcp_server is not actively maintained — last commit was 427 days ago. It has 50 GitHub stars.

Roadrecon_mcp_server

Name: Roadrecon_mcp_server
Author: atomicchonk

by atomicchonk

Claude MCP server to perform analysis on ROADrecon data

50 0 tools GitHub

No known CVEs

MIT license

Stale

Last commit 427d ago

Works with most clients

Transport: sse

0 tools

Grade F

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopsse · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "roadrecon-mcp-server": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/roadrecon-mcp-server)](https://mcppedia.org/s/roadrecon-mcp-server)

Read me

What Roadrecon_mcp_server does

This MCP (Model Context Protocol) server provides AI assistants like Claude with access to your ROADRecon Azure AD data for security analysis.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

28/100across 5 weighted dimensions

How we score →

0255075100

−72

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Roadrecon_mcp_server safe to use?: Roadrecon_mcp_server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.
How do I install Roadrecon_mcp_server?: Roadrecon_mcp_server can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with Roadrecon_mcp_server?: Roadrecon_mcp_server is compatible with claude-desktop, cursor, claude-code. It uses sse transport.
Is Roadrecon_mcp_server actively maintained?: Roadrecon_mcp_server is not actively maintained — last commit was 427 days ago. It has 50 GitHub stars.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

io.github.jasonxkensei/xproof92

Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.

1 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

9.0k 3

Mcpki Server92

mcpki-server is the backend infrastructure for https://www.mcpki.org, enabling secure public key management and autonomous certificate handling for large language models (LLMs).

MCP Security Weekly

Get CVE alerts and security updates for Roadrecon_mcp_server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopsse · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "roadrecon-mcp-server": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/roadrecon-mcp-server)](https://mcppedia.org/s/roadrecon-mcp-server)

Read me

What Roadrecon_mcp_server does

This MCP (Model Context Protocol) server provides AI assistants like Claude with access to your ROADRecon Azure AD data for security analysis.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

ROADrecon MCP Server

This MCP (Model Context Protocol) server provides AI assistants like Claude with access to your ROADRecon Azure AD data for security analysis.

The amazing ROADtools suite by dirkjanm can be found here: ROADRecon

Features

Resources: Access Azure AD data from your ROADRecon instance
Tools: Run security analysis on the data
Prompts: Pre-built analysis templates for common security tasks

Prerequisites

Python 3.8+
A running ROADRecon instance with the web GUI accessible
MCP-compatible client (Claude Desktop, etc.)

Installation

Clone this repository
Install dependencies:
```
pip install -r requirements.txt
```

Usage

Running the server

Make sure your ROADRecon GUI is running (default: http://localhost:5000)
Run the MCP server:
```
python roadrecon_mcp_server.py
```

To specify a different ROADRecon URL:

ROADRECON_URL=http://localhost:8080 python roadrecon_mcp_server.py

Connecting with Claude Desktop

Open Claude Desktop
Go to Settings → Servers → Add Server
Select "Add from running server"
The server should appear in the list - click "Install"

More details on this step can be found here: https://modelcontextprotocol.io/quickstart/server

Using in Claude

Once connected, Claude can:

Access Azure AD data via resources (e.g., roadrecon://users)
Run security analysis with tools (e.g., find_privileged_users)
Use pre-built prompts for common security tasks

Example Queries

"Analyze the MFA status of users in this Azure AD tenant"
"Find all users with privileged roles"
"Check for applications with secrets or certificates"
"Analyze the overall security posture of this Azure AD environment"

https://github.com/user-attachments/assets/806e9ccd-d80e-4058-be4f-9d37095f1fd6

Resources Available

roadrecon://stats - Summary statistics
roadrecon://users - All users
roadrecon://users/{id} - User details
roadrecon://groups - All groups
roadrecon://groups/{id} - Group details
roadrecon://applications - All applications
roadrecon://applications/{id} - Application details
roadrecon://serviceprincipals - All service principals
roadrecon://serviceprincipals/{id} - Service principal details
roadrecon://devices - All devices
roadrecon://mfa - MFA status for all users
roadrecon://directoryroles - All directory roles
roadrecon://roledefinitions - All role definitions
roadrecon://approles - All app role assignments
roadrecon://oauth2permissions - All OAuth2 permission grants
roadrecon://tenantdetails - Tenant details

Tools Available

find_privileged_users() - Find users with high-privilege roles
analyze_mfa_status() - Analyze MFA deployment across users
find_applications_with_secrets() - Find applications with secrets/certificates
analyze_groups() - Analyze group types and membership
identify_stale_accounts() - Find accounts that haven't logged in or changed password within a specified period
analyze_pim_implementation() - Assess Privileged Identity Management implementation
analyze_service_principal_credentials() - Find over-permissioned service principals with long-lived credentials
analyze_legacy_authentication() - Identify risks from legacy authentication protocols that bypass MFA
analyze_conditional_access_policies(file_path: str = "") - Analyze conditional access policies from an HTML file. Looks for the file at "C:\Temp\caps.html" by default, or prompts the user to specify a file path if not found.

Prompts Available

analyze_security_posture - Comprehensive security analysis
analyze_privileged_access - Analysis of privileged access model
investigate_application_risks - Application security risk assessment
analyze_identity_security - Identity security configuration analysis
analyze_stale_accounts - Analysis of inac

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

28/100across 5 weighted dimensions

How we score →

0255075100

−72

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Roadrecon_mcp_server safe to use?: Roadrecon_mcp_server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.
How do I install Roadrecon_mcp_server?: Roadrecon_mcp_server can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with Roadrecon_mcp_server?: Roadrecon_mcp_server is compatible with claude-desktop, cursor, claude-code. It uses sse transport.
Is Roadrecon_mcp_server actively maintained?: Roadrecon_mcp_server is not actively maintained — last commit was 427 days ago. It has 50 GitHub stars.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

io.github.jasonxkensei/xproof92

Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.

1 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

9.0k 3

Mcpki Server92

mcpki-server is the backend infrastructure for https://www.mcpki.org, enabling secure public key management and autonomous certificate handling for large language models (LLMs).

MCP Security Weekly

Get CVE alerts and security updates for Roadrecon_mcp_server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?