mcp-checkup is an open-source CLI utility that audits MCP server setups, measuring context tax and hygiene. Below are 39 testing & qa apps with similar functionality to mcp-checkup, matched by what each product actually does — not ranked or scored. Explore each to find the closest fit for your use case.
mcp-audits is an open-source CLI tool that scans, enumerates, and risk-scores permissions on locally configured MCP servers. It is designed for security engineers and AI infrastructure operators to ensure safe and compliant access control in AI systems.
mcp-config-audit is an open-source command-line tool that scans Model Context Protocol (MCP) configuration files for security issues. It operates locally, requiring no account or network connection, and outputs results in SARIF format. Designed for developers and security engineers who need to audit MCP configs securely and efficiently.
mcp-check-security is an open-source command-line tool that performs offline security checks on Model Context Protocol (MCP) server configurations. It helps developers and security engineers identify potential vulnerabilities and misconfigurations before deployment. The tool is designed for use in AI infrastructure environments.
mcpscore is an open-source CLI tool that analyzes MCP servers for compliance, quality, and protocol validation. It generates comprehensive reports to help developers and administrators ensure their Model Context Protocol servers meet required standards.
mcp-mcts is an open-source CLI tool for local MCP security scanning, attack chain analysis, inventory management, and CI integration. It supports optional Semgrep and LLM analysis, making it suitable for security engineers and DevOps teams focused on codebase security.
Linter for MCP (Model Context Protocol) config files used by Claude Desktop, Cursor, Cline, Windsurf, and Zed. CLI + library API.
mcp-audit-scanner is an open-source CLI tool designed to audit Model Context Protocol (MCP) server configurations for security and privacy vulnerabilities. It assists security engineers in identifying and mitigating risks in AI agent infrastructure.
mcpvet is an open-source CLI tool that combines testing, linting, and contract validation for MCP servers. It integrates with pytest and ESLint, streamlining the development and quality assurance process for developers working with the Model Context Protocol.
mcp-security-scan is an open-source CLI tool that scans MCP servers for hardcoded secrets, unsafe execution, and missing authentication. It helps developers and security engineers identify and remediate vulnerabilities in their MCP infrastructure.
mcp-strike is an open-source command-line tool designed for active, runtime adversarial testing of Model Context Protocol (MCP) servers. It helps security engineers and red teams identify vulnerabilities and weaknesses by simulating attacks and scanning for issues. The tool supports automated security assessments and is freely available under the MIT license.
mcp-surfaceprint is an open-source CLI tool that allows users to inspect what an MCP server exposes before connecting to it. It helps security engineers and AI infrastructure teams audit and verify server configurations for safe integration with agent systems.
tappy-mcp is an open-source command-line tool for discovering, configuring, running, inspecting, and monitoring Model Context Protocol (MCP) servers across AI clients. It provides infrastructure engineers and developers with essential tools to manage and monitor MCP-based AI deployments efficiently.
Simple MCP Client to quickly test and explore MCP servers from the command line
mcp-risk-linter is an open-source CLI tool that analyzes MCP server tools for readiness and security risks, including authentication, filesystem, shell, and network vulnerabilities. It helps developers and DevOps teams ensure safer deployments.
MCPM is an open-source command-line tool that helps developers manage Model Context Protocol (MCP) servers. It offers features like server discovery, global installation, profile-based organization, and seamless integration with MCP clients, making it easier to configure and share AI agent servers.
mcp-bandit is an open-source command-line tool for scanning Model Context Protocol (MCP) servers for security vulnerabilities, including prompt injection and SSRF. It is designed for security engineers to audit and analyze MCP deployments.
Security scanner for MCP (Model Context Protocol) servers - pentest your AI agent's tool connections
qualys-cli-mcp is an open-source CLI tool and MCP (Model Context Protocol) server that wraps the qualys-cli, allowing any LLM or compatible tool to access the Qualys Cloud Platform. It is designed for developers and security engineers who want to automate vulnerability management and integrate Qualys data into AI workflows.
mcp-gui-tester is an open-source PyQt6 desktop application for developers to test and interact with MCP (Model Context Protocol) servers over HTTP. It provides a graphical interface to list tools, fill parameters, call tools, and inspect results, streamlining the development and debugging process for MCP integrations.
mcptest is an open-source CLI tool designed for automated testing of Model Context Protocol (MCP) servers in CI environments. It provides compliance scoring, security scanning, and schema drift detection, streamlining MCP server validation for developers and DevOps teams.
Kubernetes production-readiness auditor, exposed as an MCP server and CLI.
Test your MCP server like you test an API — declarative YAML, CI-ready, zero boilerplate.
Lookup MCP servers in the official MCP Registry by name or URL.
Production-ready MCP server for monitoring AWS Health events and service status
The package manager for MCP servers — install and configure in one command.
Reconnaissance and known-issue scanner for Model Context Protocol (MCP) servers
MCP Pre-Flight is a web-based tool that audits Model Context Protocol (MCP) server submissions for compatibility with Claude and OpenAI directories. It performs protocol checks, OAuth validation, and source code analysis to help developers ensure compliance before submission.
mcp-toolguard is an open-source CLI tool for contract testing, drift detection, and security checks on MCP servers. It integrates with CI pipelines and production environments to help DevOps engineers maintain server integrity.
CI gate for MCP servers
openclaw-health-mcp is an open-source MCP server for monitoring the health of AI agent deployments. It tracks gateway status, resource usage, errors, and skill registry integrity, providing cross-platform support for infrastructure operators and developers managing production AI systems.
bash-vet-mcp is an open-source CLI tool and MCP server that analyzes and vets shell commands generated by LLMs before execution. It detects potentially destructive patterns and enforces security rules, helping developers and AI agent operators run automation safely.
mcpgawk is an open-source CLI tool for measuring and verifying MCP (Model Context Protocol) servers locally. It ensures no inventory data leaves the user's machine, providing security and transparency for AI infrastructure engineers and researchers. The tool is Apache-2.0 licensed.
pcp-mcp is an open-source MCP server designed for use with Performance Co-Pilot (PCP). It facilitates advanced monitoring and integration using the Model Context Protocol, making it suitable for system administrators and developers managing performance data.
hexis-mcp-guard is an open-source command-line tool that scans Model Context Protocol (MCP) servers for security vulnerabilities. It checks for issues such as misconfigurations and exposed secrets, helping administrators secure their MCP deployments. Designed for security engineers and server admins.
prufa-mcp is an open-source QA agent and MCP server designed for automated testing of applications, especially those using vibe-coding. It supports browser automation and integrates with AI agents, making it suitable for developers seeking robust automated QA workflows.
A directory and scoring registry for MCP servers, providing trust ratings and security analysis.
Security scanner for MCP servers — detect prompt injection, credential leaks, exposed endpoints, and tool poisoning
MCPfinder is an open-source tool that helps AI agents discover and configure Model Context Protocol (MCP) servers. It inspects trust signals, manages environment variables, and generates install-ready configurations, streamlining integration for developers building AI agents that interact with external tools and data sources.
MCPcat is an analytics and debugging tool for Model Context Protocol (MCP) agent sessions. It provides real-time monitoring, session replay, and issue tracking to help AI developers and product teams understand and improve agent performance.