Security MCP Servers

Find MCP servers for security scanning, compliance context, secrets, identity, policy checks, and agent-assisted security workflows.

Compare serversSearch Security

Matching MCP servers

Pulled from the existing MCP Servers directory with no separate topic database.

View all search results
Security Infrastructure MCP Servers
Integrate with security platforms like Splunk SIEM, CrowdStrike EDR, and Microsoft MISP.
View server
AWS Security MCP
An MCP server that enables AI assistants to interact with AWS security services.
View server
Bright Security MCP
The new Bright MCP Server enables AI assistants to directly interact with Bright and manage security scans end-to-end. Using natural language prompts, AI can now analyze existing coverage, identify missing or hidden entrypoints, add them to the project, select the most relevant security tests based on the application’s technology, and start scans automatically.
View server
cybersecurity-mcp-server
CVE database and vulnerability intelligence for AI agents. Search NIST NVD, check software security, find known vulnerabilities — no API key required.
View server
Cybersecurity Vulnerability Intel MCP
Real-time CVE lookup via NIST NVD 2.0, CISA KEV alerts, EPSS exploitation probability, and MITRE ATT&CK mappings. 7 tools for AI-powered vulnerability assessment.
View server
ISO 27001 AI Security MCP
ISO 27001 information security compliance — control assessment, risk treatment, SoA generation by MEOK AI Labs
View server
OWASP Agentic Security MCP
OWASP agentic AI security — prompt injection detection, tool poisoning prevention, agent trust boundaries by MEOK AI Labs
View server
agent-audit
Security scanner for MCP servers and AI agent tooling. Detects prompt injection, command injection, auth bypass, and excessive permissions.
View server
Compliance MCP
AI compliance calendar with global regulation tracking, risk assessment, and policy change monitoring
View server
Compliance Auditor MCP
City hiring-compliance MCP server with regulation search and full audit risk scoring.
View server
ComplianceCow MCP Server
Provides AI agents with compliance insights, auditable responses, and actions like ticket creation and policy fixes.
View server
Canada AIDA AI Compliance MCP
Canada Artificial Intelligence and Data Act compliance — risk classification, impact assessment, regulatory readiness by MEOK AI Labs
View server

Where Security MCP fits

Give agents controlled access to security findings, policies, audit logs, and identity context.

Summarize vulnerability and compliance signals before routing work to engineering or operations.

Connect security context with coding, DevOps, and incident-response workflows.

Setup checklist

  1. 1Choose security servers for the systems your team already uses.
  2. 2Start with read-only access to findings, policies, inventory, or audit logs.
  3. 3Add scoped credentials to the MCP client configuration.
  4. 4Review outputs against known findings before relying on agent-generated remediation advice.

How to choose

  • Prefer tools that expose severity, source links, timestamps, affected resources, and recommended actions.
  • Check whether sensitive data such as secrets, tokens, and identity records is redacted or scoped.
  • Keep remediation, policy changes, and account actions behind explicit approval.

Security MCP FAQ

What is Security MCP?

Security MCP exposes security, compliance, identity, or vulnerability context to agents through MCP so they can help investigate and summarize risk.

Can Security MCP fix vulnerabilities automatically?

Some workflows can draft fixes or trigger actions, but remediation should be reviewed because security changes can have broad impact.

Which integrations fit Security MCP?

Vulnerability scanners, secret scanners, identity systems, audit logs, compliance tools, and cloud-security platforms all fit this topic.