UPinar/contrastapi
by Various
MCP server with 53 security intelligence tools — CVE/KEV, MITRE ATLAS+D3FEND, Sigma detection rules, email security posture (SPF/DMARC), domain & web intel, threat intel.
MCP
UPinar/contrastapi
Added 1 June 2026
Overview
An open-source MCP server written in Python that exposes 53 security intelligence tools via a unified interface. It aggregates data from sources such as CVE/KEV, MITRE ATLAS and D3FEND, Sigma detection rules, email security posture (SPF/DMARC), domain and web intelligence, and threat intelligence feeds.
Best for
Best for
Developers building security automation pipelines who need a unified API for threat intelligence and vulnerability data
Use cases
- Querying CVEs and known exploited vulnerabilities for vulnerability management
- Checking email security posture (SPF/DMARC) for domain configuration audits
- Enriching security alerts with threat intelligence data from multiple feeds
How to use
Install
pip install contrastapi # Python 3.10+ — sync + async, typed responses, shortcut helpers Tested with
Claude Desktop, VS Code
Example client config
{\n "mcpServers": {\n "contrastapi": {\n "command": "npx",\n "args": ["-y", "mcp-remote", "https://api.contrastcyber.com/mcp/"]\n }\n }\n} Notes
An open-source MCP server written in Python that exposes 53 security intelligence tools via a unified interface. It aggregates data from sources such as CVE/KEV, MITRE ATLAS and D3FEND, Sigma detection rules, email security posture (SPF/DMARC), domain and web intelligence, and threat intelligence feeds.
28 stars on GitHub. Last updated 2026-06-01. Licensed MIT.
Use cases
- Querying CVEs and known exploited vulnerabilities for vulnerability management
- Checking email security posture (SPF/DMARC) for domain configuration audits
- Enriching security alerts with threat intelligence data from multiple feeds
Pros
- Broad coverage of security data sources in a single MCP server
- Open source with Python codebase, making it extensible and integrable
- Provides structured access to specialized intel like MITRE ATLAS and Sigma rules
Cons
- Low community adoption (28 stars) may indicate limited testing or support
- Requires running and maintaining a server process for each deployment
- Depth and recency of each data source depend on upstream feeds, not all equally maintained
Indexed from awesome-mcp-servers-punkpeye and enriched against its public facts.
Pros
- Broad coverage of security data sources in a single MCP server
- Open source with Python codebase, making it extensible and integrable
- Provides structured access to specialized intel like MITRE ATLAS and Sigma rules
Cons
- Low community adoption (28 stars) may indicate limited testing or support
- Requires running and maintaining a server process for each deployment
- Depth and recency of each data source depend on upstream feeds, not all equally maintained
Pairs with
Other entries in the index that connect to this one. Click through to see the chain.
Get the free Developer’s Field Guide
A 27-page field guide to the AI coding workflow with Claude. Claude Code, MCP servers, the prompt patterns that work, and what to delegate. Free.
Enter your work email. We send it straight over, plus a few short notes worth knowing. Unsubscribe any time.