MCPScan

MCP Tool

sahiloj/MCPScan

Offensive MCP server auditor — detects tool poisoning, credential leaks, RCE vectors, SSRF, session hijacking, and supply chain vulnerabilities across stdio, HTTP, and SSE transports.

Install

$ npx loaditout add sahiloj/MCPScan

Platform-specific configuration:

.claude/settings.json

{
  "mcpServers": {
    "MCPScan": {
      "command": "npx",
      "args": [
        "-y",
        "MCPScan"
      ]
    }
  }
}

Add the config above to .claude/settings.json under the mcpServers key.

Reviews

Loading reviews...

Quality Signals

Quality Score4100

Stars

Installs

Last updated9 days ago

Security: B

New

MCPScan

Install

Tags

Reviews

Quality Signals

Safety

Details

Embed Badge