Production-grade MCP server giving Claude 27 security intelligence tools across 21 APIs — CVE lookup, EPSS scoring, CISA KEV, MITRE ATT&CK, Shodan, VirusTotal, and more.

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.

Ostorlab KEV: One-command to detect most remotely known exploitable vulnerabilities. Sourced from CISA KEV, Google's Tsunami, Ostorlab's Asteroid and Bug Bounty programs.

A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more) to an interactive html file.

🛡️ VIPER: Stay ahead of threats with AI-driven vulnerability intelligence. Prioritize CVEs effectively using NVD, EPSS, CISA KEV, and Google Gemini insights, all on an interactive dashboard

KEV EPSS Data

Build a CVE library with aggregated CISA, EPSS and CVSS data

CVE monitoring for Magento / Adobe Commerce / Mage-OS. Polls KEV, NVD, GHSA, OSV, Packagist; filters against your composer.lock; alerts only P0/P1 to Slack.

WordPress vulnerability scanner with public exploit/POC lookup, gambling spam (judol) detection, and AI-powered analysis. Scan plugins, themes & core for known CVEs — offline or remote.

Unified vulnerability intelligence platform - CVE data, CVSS scores, EPSS predictions, CISA KEV, exploit tracking, and risk scoring in one place.

Scraper for daily renewal of the Known Exploited Vulnerabilities Catalog by CISA

A small, fast Rust CLI to search CVEs from vuln.mlab.sh, keyword & faceted search, latest feed, full CVE detail (CVSS, EPSS, CISA KEV, CWE, references), colored TTY output and --json for piping. Single static binary, no API key, no runtime deps.

Paste your manifest. Get back the fixed files. Free browser-based dependency security fixer — npm, PyPI, Ruby, PHP. No login. No CLI.

Monitors the CISA KEV catalog for changes and alerts you via desktop notification.

Exposure Likelihood Framework (ELF): A Python library for integrating and analyzing vulnerability data to improve management and prioritization.

An automated repo to track Nuclei template scanning capabilities against the CISA KEV.

Be notified whenever CISA updates their Known Exploited Vulnerabilities Catalog

Desktop vulnerability scanner for Veeam Backup & Replication. Mount VM backup restore points, scan with Trivy, Grype, or Jadi, and track vulnerability lifecycle — with PDF/CSV reports, CISA KEV integration, and scheduled automation.

A single JSON file with all CERT-FR ALE entries and their CVE data

Dependency CVE exposure scanner that gives you a single risk score — weighted by CVSS, EPSS exploit probability, and CISA KEV. Scans npm, Go, Rust, Python, and Ruby. SARIF output, transitive dep graph, and GitHub PR comments with score diff.