hopper-recon

iksnerd/hopper-recon
★ 1 stars TypeScript AI/LLM Updated 1mo ago
Self-hosted attack surface recon dashboard + MCP server — AI agents and humans drive subfinder, dnsx, tlsx, httpx, cdncheck, alterx via Docker Compose
View on GitHub → 🔍 Audit Wallet Slippage →

Quick Install

Copy the config for your editor. Some servers may need additional setup — check the README.

Add to claude_desktop_config.json:

{
  "mcpServers": {
    "hopper-recon": {
      "command": "npx",
      "args": [
        "-y",
        "iksnerd/hopper-recon"
      ]
    }
  }
}

README Excerpt

Self-hosted, MCP-native security reconnaissance dashboard. A **Go engine** wraps the [projectdiscovery](https://github.com/projectdiscovery) OSINT tooling and owns its own SQLite; a **Next.js 16 dashboard** is a thin HTTP client on top. AI agents (Claude Code / Cline / Claude Desktop) can attach to the same engine over MCP and use the recon tools directly.

Tools (14)

ENGINE_URLHOPPER_ADDRHOPPER_ALLOWED_DOMAINSHOPPER_BLOCKLIST_OVERRIDE_REASONHOPPER_DB_PATHHOPPER_OVERRIDE_BLOCKLISTcheck_cdnexpand_subdomainsfetch_tls_certfind_urlslookup_geoippassive_subdomainsprobe_httpresolve_dns

Topics

attack-surfaceattack-surface-managementbug-bountydockergolangmcpmcp-servernextjsosintpenetration-testingprojectdiscoveryreconsecurityself-hostedsubdomain-enumeration