AynOps

AynOps

CyberSecurity MCP Server extends Claude with real-time cybersecurity reconnaissance capabilities that Claude doesn't have by default. Instead of manually running 5 different tools across different terminals, just tell Claude "analyze google.com" and get a complete security breakdown instantly. Tools included: * WHOIS Lookup — registrar, ownership, creation/expiry dates * DNS Enumeration — A,

Category
Visit Server

README

<div align="center"> <picture> <img alt="LangChain Logo" src=".github/images/logo.svg" width="90%"> </picture> </div>

<div align="center"> <h3> A Model Context Protocol (MCP) server that gives Claude real-time cybersecurity reconnaissance capabilities. Instead of manually running tools across different terminals, just tell Claude "analyze google.com" and get a complete security breakdown instantly. </h3> </div>

<div align="center"> <a href="https://opensource.org/licenses/MIT" target="_blank"> <img src="https://img.shields.io/badge/license-MIT-green.svg" /></a> <a href="https://github.com/gaoharimran29-glitch/AynOps" target="_blank"> <img src="https://img.shields.io/github/stars/gaoharimran29-glitch/AynOps?style=social" /></a> <a href="https://github.com/gaoharimran29-glitch/AynOps/network/members" target="_blank"><img src="https://img.shields.io/github/forks/gaoharimran29-glitch/AynOps?style=social" /></a> <a href="https://pypi.org/project/AynOps/" target="_blank"><img src="https://img.shields.io/pypi/v/Cybersecurity-MCP-Server?label=version" /></a> <a href="https://github.com/gaoharimran29-glitch/AynOps/issues" target="_blank"><img src="https://img.shields.io/github/issues/gaoharimran29-glitch/AynOps" /></a> <a href="https://glama.ai/mcp/servers/gaoharimran29-glitch/AynOps"> <img src="https://glama.ai/mcp/servers/gaoharimran29-glitch/AynOps/badges/score.svg" /></a> </div>

What is this?

Claude by default has zero native cybersecurity tooling. No WHOIS. No DNS enumeration. No port scanning. No SSL inspection.

This MCP server fixes that — extending Claude with real-world security tools that run live against any domain or IP. Reconnaissance that normally requires multiple specialized tools and 20+ minutes of manual work becomes a single prompt.

This is a local MCP server — it runs entirely on your machine. Your data never leaves your computer. It is also listed on glama mcp registry.


Tools Available

Tool Description
whois_lookup Domain registration data — owner, registrar, creation date, expiry, name servers
dns_enumeration A, AAAA, MX, NS, TXT, CNAME, SOA records + common subdomain brute-forcing
port_scan Nmap-powered scanner with service/version detection and security warnings
ssl_inspect SSL/TLS certificate — issuer, expiry, cipher strength, SANs, TLS version
tech_stack_detect Web server, CMS, JS frameworks, CDN, analytics, and security header scoring
cert_transparency Subdomain discovery via crt.sh Certificate Transparency logs with an automatic fallback to HackerTarget passive DNS on timeouts
asn_lookup Autonomous System Number (ASN) and network ownership lookup — identifies hosting provider, ISP, organization, geolocation, and infrastructure ownership for domains or IP addresses
full_recon Runs all 7 core tools in parallel and returns combined results for Claude to analyze
cve_lookup Search NVD for known CVEs by software name and version (no API key required)
ip_reputation Check if an IP is flagged as malicious via AbuseIPDB (api key requied)

📸 Demo

Single tool — CVE lookup

You: Look up CVEs for apache 2.4.49

Claude: Found 2 critical CVEs for Apache 2.4.49:
        CVE-2021-41773 (Score: 9.8 CRITICAL) — Path traversal vulnerability
        allowing remote code execution if CGI is enabled. Actively exploited
        in the wild...

<div align="center"> <picture> <img alt="CVE Lookup tool" src=".github/images/single_tool.png" width="100%" , height="70%"> </picture> </div>

Full recon

You: Do a complete security recon on reddit.com

Claude: [calls full_recon → runs 6 tools in parallel → delivers full analysis]

<div align="center"> <picture> <img alt="Full recon tool" src=".github/images/full_recon1.png" width="100%" height="70%"> </picture> </div>

<div align="center"> <picture> <img alt="Full recon tool" src=".github/images/full_recon2.png" width="100%" height="70%"> </picture> </div>


📋 Prerequisites


⚙️ Installation

Step 1 — Clone the repository

git clone https://github.com/gaoharimran29-glitch/AynOps
cd AynOps

Step 2 — Install Python dependencies

pip install -r requirements.txt

Step 3 — Install Nmap

Windows:

  1. Download from nmap.org/download.html and run the installer
  2. Manually add Nmap to PATH:
    • Press Win + S → search "Environment Variables"
    • Under System Variables → find Path → click Edit
    • Click New → add C:\Program Files (x86)\Nmap
    • Click OK on all windows
  3. Restart your terminal and verify:
nmap --version

Mac:

brew install nmap

Linux:

sudo apt install nmap

Step 4 — Connect to Claude Desktop

Open your Claude Desktop config file:

OS Path
Windows %APPDATA%\Claude\claude_desktop_config.json
Mac ~/Library/Application Support/Claude/claude_desktop_config.json
Linux ~/.config/Claude/claude_desktop_config.json

Add this configuration:

Windows:

{
  "mcpServers": {
    "cybersecurity": {
      "command": "C:\\full\\path\\to\\AynOps\\.venv\\Scripts\\python.exe",
      "args": ["C:\\full\\path\\to\\AynOps\\server.py"],
      "env": {
        "ABUSEIPDB_API_KEY": "your-api-key-here",
        "IP_API_KEY": "your-api-key-here"
      }
    }
  }
}

Mac/Linux:

{
  "mcpServers": {
    "cybersecurity": {
      "command": "/full/path/to/AynOps/.venv/bin/python3",
      "args": ["/full/path/to/AynOps/server.py"],
      "env": {
        "ABUSEIPDB_API_KEY": "your-api-key-here",
        "IP_API_KEY": "your-api-key-here"
      }
    }
  }
}

⚠️ Always use the full absolute path to your .venv Python executable — not just python or python3. Claude Desktop may use a different Python installation otherwise.

Note: ABUSEIPDB_API_KEY is only required for the ip_reputation tool. Get a free key at abuseipdb.com. IP_API_KEY is only required for the asn_lookup tool. get a free key at ipapi.com

Step 5 — Restart Claude Desktop

Fully quit and reopen Claude Desktop — closing the window is not enough. Check the system task manager and quit from there.

Verify tools are connected by asking Claude:

What cybersecurity tools do you have available?

Claude should list all tools.


🚀 Usage

Basic tool usage

Do a WHOIS lookup on example.com
Run DNS enumeration on github.com
Scan ports on scanme.nmap.org
Inspect the SSL certificate of stripe.com
Detect the tech stack of wordpress.org
Look up CVEs for apache 2.4.49
Look up CVEs for log4j 2.14.1
Check the reputation of IP 1.2.3.4
ASN Lookup for google.com

Port scan types

Type Description Speed
basic Top 100 ports Fast (~5s)
service Service & version detection Medium (~15s)
os OS detection (requires admin) Medium
full All 65535 ports Slow (~5min)
vuln Vulnerability scripts Slow (~30s)
Scan scanme.nmap.org with service detection

Full recon

Do a complete security recon on reddit.com

Claude will run all core tools in parallel and deliver a full security analysis.

Follow-up analysis

Based on the recon, what are the top security risks?
What do the open ports mean from an attacker's perspective?
Is this SSL configuration strong enough for a financial services company?
Cross-reference the open ports with known CVEs for the detected services.

⚠️ Legal & Ethical Usage

Only scan domains and IPs you own or have explicit written permission to scan.

  • All tools use public data — safe on any domain
  • Port scanning should only target your own infrastructure or authorized systems
  • The only public host officially permitted for Nmap testing is scanme.nmap.org
  • Unauthorized port scanning may be illegal in your jurisdiction

Intended for:

  • Security researchers
  • Penetration testers (on authorized targets)
  • Developers auditing their own infrastructure
  • Students learning cybersecurity concepts

🗂️ Project Structure

├── .github/              # GitHub Actions workflows and templates
├── tests/                # Unit tests
├── tools/                # MCP tool implementations
├── utils/                # Shared helper utilities
├── server.py             # MCP server entry point
├── pyproject.toml        # Project metadata and dependencies
├── requirements.txt      # Python dependencies
├── mcp.json              # MCP server metadata
├── glama.json            # Glama MCP metadata
├── Dockerfile            # Docker image definition
├── SECURITY.md           # Security policy
├── CONTRIBUTING.md       # Contribution guidelines
└── README.md             # Project documentation

Glama MCP Scoring

<div align="left">

<a href="https://glama.ai/mcp/servers/gaoharimran29-glitch/AynOps"> <img src="https://glama.ai/mcp/servers/gaoharimran29-glitch/AynOps/badges/card.svg" /> </a>

</div>

🤝 Contributing

Pull requests are welcome! Check contributing.md for guidelines and a list of open issues ready to pick up.


📜 License

MIT License — free to use, modify, and distribute.


👤 Author

Built by Gaohar Imran


⭐ If this project helped you, consider giving it a star on GitHub!

Recommended Servers

playwright-mcp

playwright-mcp

A Model Context Protocol server that enables LLMs to interact with web pages through structured accessibility snapshots without requiring vision models or screenshots.

Official
Featured
TypeScript
Magic Component Platform (MCP)

Magic Component Platform (MCP)

An AI-powered tool that generates modern UI components from natural language descriptions, integrating with popular IDEs to streamline UI development workflow.

Official
Featured
Local
TypeScript
Audiense Insights MCP Server

Audiense Insights MCP Server

Enables interaction with Audiense Insights accounts via the Model Context Protocol, facilitating the extraction and analysis of marketing insights and audience data including demographics, behavior, and influencer engagement.

Official
Featured
Local
TypeScript
VeyraX MCP

VeyraX MCP

Single MCP tool to connect all your favorite tools: Gmail, Calendar and 40 more.

Official
Featured
Local
graphlit-mcp-server

graphlit-mcp-server

The Model Context Protocol (MCP) Server enables integration between MCP clients and the Graphlit service. Ingest anything from Slack to Gmail to podcast feeds, in addition to web crawling, into a Graphlit project - and then retrieve relevant contents from the MCP client.

Official
Featured
TypeScript
Kagi MCP Server

Kagi MCP Server

An MCP server that integrates Kagi search capabilities with Claude AI, enabling Claude to perform real-time web searches when answering questions that require up-to-date information.

Official
Featured
Python
E2B

E2B

Using MCP to run code via e2b.

Official
Featured
Neon Database

Neon Database

MCP server for interacting with Neon Management API and databases

Official
Featured
Exa Search

Exa Search

A Model Context Protocol (MCP) server lets AI assistants like Claude use the Exa AI Search API for web searches. This setup allows AI models to get real-time web information in a safe and controlled way.

Official
Featured
Qdrant Server

Qdrant Server

This repository is an example of how to create a MCP server for Qdrant, a vector search engine.

Official
Featured