mukul975/cve-mcp-server

This MCP server hands Claude 27 security intelligence tools spanning 21 APIs in one shot — CVE lookup, EPSS risk scoring, CISA KEV, MITRE ATT&CK mappings, Shodan exposure data, VirusTotal scans, and more. The key move here is aggregation: instead of manually jumping between NVD, Shodan, and VirusTotal tabs during an incident or a dependency audit, you ask Claude and get correlated context back. That workflow change alone is worth the setup for a solo security engineer or a small team doing regular CVE triage. Reservation: you are still dependent on having valid API keys for each upstream service, so the cold-start cost is real. But if you already subscribe to these feeds, this is the glue layer you would have built yourself eventually. -> Best for: solo founder or indie hacker shipping a security-focused SaaS who needs fast CVE triage without switching contexts