MCPSafe is a web-based security scanner for Model Context Protocol servers. It performs pre-install audits using static analysis and multi-LLM consensus to detect vulnerabilities, typosquatting, and permission issues. Below are 14 security & compliance platforms apps with similar functionality to MCPSafe, matched by what each product actually does — not ranked or scored. Explore each to find the closest fit for your use case.
mcpsnare is an open-source CLI tool that actively scans Model Context Protocol (MCP) servers for vulnerabilities using confirmation-driven techniques. It is designed for security professionals to automate security assessments and penetration testing of MCP endpoints.
mcp-check-security is an open-source command-line tool that performs offline security checks on Model Context Protocol (MCP) server configurations. It helps developers and security engineers identify potential vulnerabilities and misconfigurations before deployment. The tool is designed for use in AI infrastructure environments.
A directory and scoring registry for MCP servers, providing trust ratings and security analysis.
mcpscore is an open-source CLI tool that analyzes MCP servers for compliance, quality, and protocol validation. It generates comprehensive reports to help developers and administrators ensure their Model Context Protocol servers meet required standards.
ShieldMCP is a web-based security scanner that analyzes Model Context Protocol (MCP) configuration files for vulnerabilities, including permission risks, exposed secrets, and supply chain threats. It provides instant feedback and actionable fixes, helping MCP administrators secure their deployments efficiently.
Security scanner for MCP servers — detect prompt injection, credential leaks, exposed endpoints, and tool poisoning
mcp-security-scan is an open-source CLI tool that scans MCP servers for hardcoded secrets, unsafe execution, and missing authentication. It helps developers and security engineers identify and remediate vulnerabilities in their MCP infrastructure.
orisan-mcpscan is an open-source CLI tool for scanning Model Context Protocol (MCP) servers for security vulnerabilities. It operates locally, providing fast and private assessments for developers and security professionals.
mcp-fence is an open-source CLI tool for security scanning, protocol inspection, dynamic fuzzing, and sandboxed testing of Model Context Protocol (MCP) servers. It helps AI infrastructure engineers identify vulnerabilities and generate security reports.
mcp-mcts is an open-source CLI tool for local MCP security scanning, attack chain analysis, inventory management, and CI integration. It supports optional Semgrep and LLM analysis, making it suitable for security engineers and DevOps teams focused on codebase security.
Security scanner for MCP (Model Context Protocol) servers - pentest your AI agent's tool connections
hexis-mcp-guard is an open-source command-line tool that scans Model Context Protocol (MCP) servers for security vulnerabilities. It checks for issues such as misconfigurations and exposed secrets, helping administrators secure their MCP deployments. Designed for security engineers and server admins.
MyMCP is a free, open-source application for macOS that enables users to discover, install, and manage Model Context Protocol (MCP) servers across various AI tools. It provides unified configuration, GitHub metadata enrichment, and quick access from the menubar, streamlining server management for developers and AI enthusiasts.
ai-agentic-mcpscan is an open-source command-line tool that provides local-first, offline-by-default security posture scanning for Model Context Protocol (MCP) and local-agent environments. It is intended for security engineers and teams managing agent-based infrastructures.