MCP Catalogs
Home

mcp-virustotal

by BurtTheCoder·125·Score 49

MCP server for VirusTotal API providing comprehensive security analysis tools with automatic relationship data fetching.

securitydeveloper-toolsai-llm
18
Forks
4
Open issues
2 mo ago
Last commit
2d ago
Indexed

Overview

This MCP server provides comprehensive security analysis tools by integrating with the VirusTotal API. It offers automatic relationship data fetching and supports URL, file, IP, and domain analysis with detailed security reports. The server supports both stdio and HTTP streaming transport modes, making it suitable for various deployment scenarios. It includes pagination support for relationship queries and error handling for API keys, rate limiting, and invalid inputs.

Try asking AI

After installing, here are 5 things you can ask your AI assistant:

you:Security researchers can analyze URLs, files, IPs, and domains for potential threats
you:Developers can integrate security checks into their applications using VirusTotal data
you:Security operations teams can automate threat intelligence gathering and analysis workflows
you:How do I get a VirusTotal API key?
you:What error handling is included in this server?

When to choose this

Choose this server when you need comprehensive security analysis of URLs, files, IPs, or domains within your AI workflow, especially when automatic relationship data fetching is valuable.

When NOT to choose this

Avoid this if you need to analyze data from other security vendors or if you need more than the 1000 API requests per day free tier limit of VirusTotal.

Tools this server exposes

8 tools extracted from the README
  • get_url_report

    Get a comprehensive URL analysis report including security scan results and key relationships

  • get_file_report

    Get a comprehensive file analysis report using its hash (MD5/SHA-1/SHA-256)

  • get_ip_report

    Get a comprehensive IP address analysis report including geolocation and reputation data

  • get_domain_report

    Get a comprehensive domain analysis report including DNS records and WHOIS data

  • get_url_relationship

    Query a specific relationship type for a URL with pagination support

  • get_file_relationship

    Query a specific relationship type for a file with pagination support

  • get_ip_relationship

    Query a specific relationship type for an IP address with pagination support

  • get_domain_relationship

    Query a specific relationship type for a domain with pagination support

Comparable tools

mcp-crowdstrikemcp-mcafeemcp-paloaltoshell-mcp-with-virustotal-cli

Installation

Installation

Claude Desktop

claude mcp add --transport stdio --env VIRUSTOTAL_API_KEY=your-key virustotal -- npx -y @burtthecoder/mcp-virustotal

Configuration

Add to Claude Desktop configuration (claude_desktop_config.json):

{
  "mcpServers": {
    "virustotal": {
      "command": "mcp-virustotal",
      "env": {
        "VIRUSTOTAL_API_KEY": "your-virustotal-api-key"
      }
    }
  }
}

Manual Installation

npm install -g @burtthecoder/mcp-virustotal

FAQ

How do I get a VirusTotal API key?
Sign up at https://www.virustotal.com/gui/my-apikey to get your API key. The key should be 64 characters long.
What error handling is included in this server?
The server handles invalid API keys, rate limiting, network errors, invalid input parameters, invalid hash formats, invalid IP formats, invalid URL formats, invalid relationship types, and pagination errors.

Compare mcp-virustotal with

mcp-virustotal vs ultimate_mcp_servermcp-virustotal vs mcp-server-chartmcp-virustotal vs everythingmcp-virustotal vs filesystemmcp-virustotal vs time
GitHub →

Last updated · Auto-generated from public README + GitHub signals.