Home / Security / mcpdx

mcpdx

joshuaruppe/mcpdx
★ 1 stars Python Security Updated today
Zero-dependency toolkit for authorized security assessment of Model Context Protocol (MCP) servers: enumerate the attack surface, run passive static audits, and opt-in fuzz tool inputs. JSON/Markdown/SARIF reports.
View on GitHub → Try with Claude — $10 free →

Quick Install

Copy the config for your editor. Some servers may need additional setup — check the README.

Add to claude_desktop_config.json:

{
  "mcpServers": {
    "mcpdx": {
      "command": "uvx",
      "args": [
        "mcpdx"
      ]
    }
  }
}

Or install with pip: pip install mcpdx

README Excerpt

<div align="center"> <img src="https://raw.githubusercontent.com/joshuaruppe/mcpdx/main/assets/banner.svg" alt="mcpdx" width="430"> **A security checkup for MCP servers** </div> `mcpdx` is a zero-dependency toolkit for **authorized** security assessment of over **stdio** or **Streamable HTTP**, enumerates the exposed attack surface

Tools (7)

auditcallenumfuzzreportscansnapshot

Topics

appseccybersecurityfuzzinginfosecmcpmodel-context-protocolpentestingpythonsarifsecuritysecurity-toolsvulnerability-scanner

Related Security Servers

casdoor ★ 13.4K
An open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI...
Security Go
lamda ★ 7.7K
The most powerful Android RPA agent framework, next generation of mobile automation robots.
Security Python
ENScan_GO ★ 4.2K
一款基于各大企业信息API的工具,解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。支持MCP接入
Security Go
vitemcp ★ 3.1K
A TypeScript framework for building MCP servers.
Security TypeScript