Enterprise DNA
M MCP Servers Developer low

UPinar/contrastapi

by Various

MCP server with 53 security intelligence tools — CVE/KEV, MITRE ATLAS+D3FEND, Sigma detection rules, email security posture (SPF/DMARC), domain & web intel, threat intel.

U

MCP

UPinar/contrastapi

Added 1 June 2026

#ai-agents #ai-security #api #claude #cve #cybersecurity #domain-recon #email-security

Overview

An open-source MCP server written in Python that exposes 53 security intelligence tools via a unified interface. It aggregates data from sources such as CVE/KEV, MITRE ATLAS and D3FEND, Sigma detection rules, email security posture (SPF/DMARC), domain and web intelligence, and threat intelligence feeds.

Best for

Best for
Developers building security automation pipelines who need a unified API for threat intelligence and vulnerability data

Use cases

  • Querying CVEs and known exploited vulnerabilities for vulnerability management
  • Checking email security posture (SPF/DMARC) for domain configuration audits
  • Enriching security alerts with threat intelligence data from multiple feeds

How to use

Install

pip install contrastapi      # Python 3.10+ — sync + async, typed responses, shortcut helpers

Tested with

Claude Desktop, VS Code

Example client config

{\n  "mcpServers": {\n    "contrastapi": {\n      "command": "npx",\n      "args": ["-y", "mcp-remote", "https://api.contrastcyber.com/mcp/"]\n    }\n  }\n}

Notes

An open-source MCP server written in Python that exposes 53 security intelligence tools via a unified interface. It aggregates data from sources such as CVE/KEV, MITRE ATLAS and D3FEND, Sigma detection rules, email security posture (SPF/DMARC), domain and web intelligence, and threat intelligence feeds.

28 stars on GitHub. Last updated 2026-06-01. Licensed MIT.

Use cases

  • Querying CVEs and known exploited vulnerabilities for vulnerability management
  • Checking email security posture (SPF/DMARC) for domain configuration audits
  • Enriching security alerts with threat intelligence data from multiple feeds

Pros

  • Broad coverage of security data sources in a single MCP server
  • Open source with Python codebase, making it extensible and integrable
  • Provides structured access to specialized intel like MITRE ATLAS and Sigma rules

Cons

  • Low community adoption (28 stars) may indicate limited testing or support
  • Requires running and maintaining a server process for each deployment
  • Depth and recency of each data source depend on upstream feeds, not all equally maintained

Indexed from awesome-mcp-servers-punkpeye and enriched against its public facts.

Pros

  • Broad coverage of security data sources in a single MCP server
  • Open source with Python codebase, making it extensible and integrable
  • Provides structured access to specialized intel like MITRE ATLAS and Sigma rules

Cons

  • Low community adoption (28 stars) may indicate limited testing or support
  • Requires running and maintaining a server process for each deployment
  • Depth and recency of each data source depend on upstream feeds, not all equally maintained
Free 27-page guide

Get the free Developer’s Field Guide

A 27-page field guide to the AI coding workflow with Claude. Claude Code, MCP servers, the prompt patterns that work, and what to delegate. Free.

Enter your work email. We send it straight over, plus a few short notes worth knowing. Unsubscribe any time.

No spam. Unsubscribe any time.

Running a business, not writing the code? See the MCP servers picked for operators, and get your first one wired up with us.

Operator picks