MCP Catalogs
Home

contrastapi

by UPinar·24·Score 45

Security intelligence MCP server with 53 tools for CVE/KEV, threat intelligence, web scanning and code security analysis.

securitydeveloper-toolsai-llm
3
Forks
0
Open issues
this month
Last commit
2d ago
Indexed

Overview

ContrastAPI is a comprehensive security intelligence MCP server that provides 53 tools for cybersecurity professionals and AI agents. It includes capabilities for CVE/KEV/CWE lookup with EPSS scoring, domain audit, IP threat reports, IOC enrichment, code security analysis, and web intelligence tools. The server integrates with multiple security intelligence sources including MITRE ATLAS, D3FEND, and Sigma detection rules. It offers both free tier usage (30 credits/hour) and paid options, with no API key required for basic functionality.

Try asking AI

After installing, here are 5 things you can ask your AI assistant:

you:Security analysts investigating vulnerabilities across multiple CVE databases and KEV listings
you:AI agents performing comprehensive domain and web application security assessments
you:Developers integrating threat intelligence directly into CI/CD pipelines for code security scanning
you:Is there a free tier available?
you:What types of security tools are included?

When to choose this

Choose ContrastAPI when you need comprehensive security intelligence tools for threat analysis, vulnerability assessment, and threat hunting without API key management.

When NOT to choose this

Not suitable for organizations requiring custom authentication models or those needing write capabilities to external systems, as this is a read-only security intelligence service.

Tools this server exposes

12 tools extracted from the README
  • cve_search

    Search for CVEs by product with optional KEV filter

  • cve_lookup

    Get full CVE record including CVSS, EPSS, KEV status, and CWE

  • exploit_lookup

    Check for public exploits or proof-of-concept for a CVE

  • domain_report

    Comprehensive domain analysis including DNS, WHOIS, SSL, subdomains, and threat intel

  • ip_lookup

    Get reputation, country, ASN, and threat intel for an IP address

  • robots_txt

    Fetch and analyze robots.txt file from a website

  • redirect_chain

    Trace the complete redirect chain of a URL

  • email_verify

    Verify email address validity without sending emails

  • brand_assets

    Discover brand assets and security-relevant web resources

  • seo_audit

    Conduct SEO analysis with ethical guardrails

  • atlas_lookup

    Lookup MITRE ATLAS AI/ML attack techniques

  • d3fend_lookup

    Lookup MITRE D3FEND defensive techniques

Comparable tools

mcp-threatfoxmcp-vulncheckosint-mcp

Installation

Install ContrastAPI MCP Server

Method 1: MCP Configuration

Add to your MCP configuration:

{
  "mcpServers": {
    "contrastapi": {
      "command": "npx",
      "args": ["-y", "mcp-remote", "https://api.contrastcyber.com/mcp/"]
    }
  }
}
Method 2: Python SDK
pip install contrastapi  # Python 3.10+
Method 3: Node.js SDK
npm install contrastapi  # Node 14+

FAQ

Is there a free tier available?
Yes, ContrastAPI offers a free tier with 30 credits per hour. No API key is required for basic functionality.
What types of security tools are included?
The server provides 53 security tools including CVE/KEV/CWE lookup, MITRE ATLAS+D3FEND integration, domain audit, IP threat reports, IOC enrichment, code security analysis, and web intelligence tools.

Compare contrastapi with

contrastapi vs ultimate_mcp_servercontrastapi vs mcp-server-chartcontrastapi vs everythingcontrastapi vs filesystemcontrastapi vs time
GitHub →

Last updated · Auto-generated from public README + GitHub signals.