MCP Catalogs
Home

mcp-shodan

by BurtTheCoder·127·Score 50

MCP server for Shodan API providing IP reconnaissance, DNS lookups, and vulnerability intelligence.

securitydeveloper-toolssearch
23
Forks
4
Open issues
2 mo ago
Last commit
2d ago
Indexed

Overview

The mcp-shodan server is a comprehensive implementation that bridges the Model Context Protocol with Shodan's extensive network intelligence database. It allows AI models to access real-time information about internet-connected devices, including IP details, DNS data, and vulnerability intelligence from Shodan's CVEDB. The server offers multiple tools including IP lookups, device searches, CVE and CPE lookups, and DNS operations, all returning structured, formatted output suitable for AI analysis and decision-making.

Try asking AI

After installing, here are 6 things you can ask your AI assistant:

you:Security researchers analyzing internet-connected devices for potential vulnerabilities
you:DevOps teams performing reconnaissance on IP addresses before system deployment
you:Compliance officers checking for known vulnerabilities in network infrastructure
you:What API key do I need for mcp-shodan?
you:What error code indicates I'm out of API credits?
you:How do I test if my MCP server is working correctly?

When to choose this

Choose this MCP server when you need AI access to Shodan's network intelligence for security research, reconnaissance, or vulnerability intelligence gathering within your workflow.

When NOT to choose this

Don't use this if you don't have a Shodan API key, as it requires paid credits for most operations beyond basic lookups.

Tools this server exposes

7 tools extracted from the README
  • ip_lookup

    Retrieve comprehensive information about an IP address

  • shodan_search

    Search Shodan's database of internet-connected devices

  • cve_lookup

    Query detailed vulnerability information from Shodan's CVEDB

  • dns_lookup

    Resolve domain names to IP addresses using Shodan's DNS service

  • reverse_dns_lookup

    Perform reverse DNS lookups to find hostnames associated with IP addresses

  • cpe_lookup

    Search for Common Platform Enumeration (CPE) entries by product name

  • cves_by_product

    Search for vulnerabilities affecting specific products or CPEs

Comparable tools

mcp-censyssecuritytrails-mcpnmap-mcp

Installation

Installation

Claude Desktop

Add to your Claude Desktop configuration file:

{
  "mcpServers": {
    "shodan": {
      "command": "mcp-shodan",
      "env": {
        "SHODAN_API_KEY": "your-shodan-api-key"
      }
    }
  }
}

Via Claude Code

claude mcp add --transport stdio --env SHODAN_API_KEY=your-shodan-api-key shodan -- npx -y @burtthecoder/mcp-shodan

Via Codex CLI

codex mcp add shodan --env SHODAN_API_KEY=your-shodan-api-key -- npx -y @burtthecoder/mcp-shodan

Via Gemini CLI

gemini mcp add -e SHODAN_API_KEY=your-shodan-api-key shodan npx -y @burtthecoder/mcp-shodan

Manual Install

npm install -g @burtthecoder/mcp-shodan

FAQ

What API key do I need for mcp-shodan?
You need a valid API key from Shodan. You can obtain one by creating an account at https://account.shodan.io/.
What error code indicates I'm out of API credits?
HTTP status code 402 'Payment Required' means you've run out of query credits on your Shodan account.
How do I test if my MCP server is working correctly?
Try a simple DNS lookup for a well-known domain like 'google.com' using the dns_lookup tool. If it returns IP addresses, your server is working properly.

Compare mcp-shodan with

mcp-shodan vs mcp-server-chartmcp-shodan vs everythingmcp-shodan vs filesystemmcp-shodan vs timemcp-shodan vs sequentialthinking
GitHub →

Last updated · Auto-generated from public README + GitHub signals.