guardmcp is an open-source CLI tool that scans MCP server configurations for security issues, including secrets, injection vulnerabilities, and authentication problems. Below are 23 security & compliance platforms apps with similar functionality to guardmcp, matched by what each product actually does — not ranked or scored. Explore each to find the closest fit for your use case.
mcp-secrets-guard is an open-source CLI tool that scans projects for AI and MCP-related secrets to prevent leaks. It is designed for developers and security teams to audit codebases before deployment.
server-guardian-mcp is a proprietary MCP server that enables monitoring and management of remote Linux servers via SSH. It offers over 60 tools including health checks, anomaly detection, dashboards, compliance reporting, and integrations with incident management platforms, targeting DevOps teams and IT administrators.
Security scanner for MCP servers — detect prompt injection, credential leaks, exposed endpoints, and tool poisoning
hexis-mcp-guard is an open-source command-line tool that scans Model Context Protocol (MCP) servers for security vulnerabilities. It checks for issues such as misconfigurations and exposed secrets, helping administrators secure their MCP deployments. Designed for security engineers and server admins.
mcp-security-scan is an open-source CLI tool that scans MCP servers for hardcoded secrets, unsafe execution, and missing authentication. It helps developers and security engineers identify and remediate vulnerabilities in their MCP infrastructure.
mcp-audit-scanner is an open-source CLI tool designed to audit Model Context Protocol (MCP) server configurations for security and privacy vulnerabilities. It assists security engineers in identifying and mitigating risks in AI agent infrastructure.
mcp-toolguard is a tool designed to monitor contracts, detect drift, and perform security checks for MCP servers in both continuous integration (CI) environments and production. It addresses the problem of silent breaking changes in MCP server contracts that can disrupt agent operations without triggering build failures or type-checking errors. By capturing a canonical snapshot of a server's tools, schemas, and capabilities, mcp-toolguard enables versioned contract management directly within a repository, using a deterministic hash to ensure consistency. The tool employs a single engine that operates across three layers: contract validation, drift detection, and security analysis. json file, which is committed and versioned with the codebase. Drift detection classifies every change as breaking, compatible, or suspicious, using semantic diffing rather than simple text comparison. This process highlights removals and type changes as breaking, additions as compatible, and changes to descriptive text as suspicious, identifying potential prompt-injection surfaces. Security checks are enforced through 15 rules targeting threats such as tool poisoning, credential-shaped parameters, cross-tool coercion, and hidden characters, with each finding accompanied by supporting evidence. mcp-toolguard integrates with CI pipelines through a GitHub Action and can be run via the command line interface. It supports scheduled checks and alerts in production, including notifications through Slack or webhooks. The tool validates server contracts against both the current and upcoming MCP specification versions, providing independent reports for each to anticipate future breaking changes. The baseline is the accepted state, and only new findings block CI or trigger production alerts. The platform offers a free tier that operates entirely offline, requiring no signup and minimal setup. mcp-toolguard is open source and distributed under the MIT license, with installation available via pip. It is suitable for teams managing MCP servers who need to ensure contract stability, detect unauthorized changes, and enforce security policies throughout the software lifecycle.
Security scanner for MCP (Model Context Protocol) servers - pentest your AI agent's tool connections
mcp-bandit is an open-source command-line tool for scanning Model Context Protocol (MCP) servers for security vulnerabilities, including prompt injection and SSRF. It is designed for security engineers to audit and analyze MCP deployments.
ShieldMCP is a security scanner designed to assess MCP (Model Context Protocol) configuration files for vulnerabilities and risks. The platform addresses security concerns by scanning uploaded or pasted MCP configuration files and checking for issues across all categories defined in the OWASP MCP Top 10. It flags permission risks, exposed secrets, supply chain threats, and other security weaknesses in MCP setups, providing users with a rapid assessment in about 60 seconds without requiring an account. json, among others. After a configuration file is uploaded, ShieldMCP conducts an instant scan that covers categories such as token mismanagement, privilege escalation, tool poisoning, software supply chain attacks, command injection, insufficient authentication, lack of audit, shadow MCP servers, and context injection. For each identified issue, the tool offers plain English explanations and, with a paid report, provides detailed fix steps and copy-paste JSON configuration examples. ShieldMCP is delivered as a web-based service, allowing users to upload or paste their configuration files directly on the platform. No account is necessary for the basic scan, and results are available immediately. The service is intended for users managing or securing MCP deployments who want to proactively identify and address security vulnerabilities before they can be exploited. The platform offers a simple pricing structure: a free tier provides risk scores, category flags, issue titles, and server ratings, while a one-time $49 payment per scan unlocks a full report with detailed fixes, configuration examples, and a shareable PDF. A Pro plan, listed as coming soon, will offer additional features such as API access, auto-rescan alerts, scan history, team configuration management, and Slack alerts for $19 per month. ShieldMCP positions itself as a specialized tool for MCP security, focusing on comprehensive coverage of the OWASP MCP Top 10.
phi-guard-mcp is an open-source CLI tool and MCP server designed to detect, redact, and audit protected health information (PHI) in medical text before it is sent to AI agents. It helps healthcare developers and privacy engineers ensure HIPAA compliance and data privacy when integrating AI into medical workflows.
AI-powered security vulnerability scanner for MCP (Model Context Protocol) servers with automatic fixes, secret detection, and multi-channel alerts
mcp-risk-linter is an open-source CLI tool that analyzes MCP server tools for readiness and security risks, including authentication, filesystem, shell, and network vulnerabilities. It helps developers and DevOps teams ensure safer deployments.
mcpfuzz is an open-source command-line tool for dynamically scanning Model Context Protocol (MCP) servers. It actively probes live servers with exploit payloads to identify vulnerabilities, supporting security researchers and penetration testers in automating MCP server assessments.
mcp-check-security is an open-source command-line tool that performs offline security checks on Model Context Protocol (MCP) server configurations. It helps developers and security engineers identify potential vulnerabilities and misconfigurations before deployment. The tool is designed for use in AI infrastructure environments.
mcp-mcts is an open-source CLI tool for local MCP security scanning, attack chain analysis, inventory management, and CI integration. It supports optional Semgrep and LLM analysis, making it suitable for security engineers and DevOps teams focused on codebase security.
mcp-fence is an open-source CLI tool for security scanning, protocol inspection, dynamic fuzzing, and sandboxed testing of Model Context Protocol (MCP) servers. It helps AI infrastructure engineers identify vulnerabilities and generate security reports.
Static analysis tool for MCP server Python code — detects security vulnerabilities via AST and taint tracking.
mcp-tool-auditor is an open-source command-line tool designed for security researchers to scan and pentest MCP servers. It provides both defensive scanning and offensive pentesting capabilities, mapping to the OWASP MCP Top 10. The tool helps identify and mitigate security vulnerabilities in AI and LLM-related infrastructures.
guardops is an open-source CLI tool for autonomous DevSecOps, enabling users to build, scan, deploy, and monitor runtime security for applications. It integrates with Kubernetes and supports automated security workflows for DevOps and security professionals.
mcp-checkup is an open-source CLI utility that audits MCP server setups, measuring context tax and hygiene. It helps AI infrastructure engineers and developers ensure their Model Context Protocol servers are efficient and healthy by providing detailed health checks and token analysis.
The package manager for MCP servers — install and configure in one command.
scoutdocs-mcp is an open-source MCP server that fetches and searches the latest stable documentation for packages on PyPI, npm, and crates.io. It provides API and CLI access for developers and AI agents to retrieve documentation efficiently across multiple registries. Ideal for tool builders and automation workflows.