Happy slice of mcp pizzaMCP.pizza
Fire in da houseTop Tip:Paying $100+ per month for Perplexity, MidJourney, Runway, ChatGPT and other tools is crazy - get all your AI tools in one site starting at $15 per month with Galaxy AI Fire in da houseCheck it out free

exploitdb-mcp-server

MCP.Pizza Chef: Cyreslab-AI

The exploitdb-mcp-server is a Model Context Protocol server that provides structured, real-time access to ExploitDB's extensive database of security exploits and vulnerabilities. It enables AI assistants like Claude to perform detailed searches by keywords, CVE IDs, and platforms, retrieve exploit details including code, track recent exploits, and gather statistical insights. This server supports automatic updates to keep the data current, enhancing cybersecurity research, threat intelligence, and vulnerability management workflows.

Use This MCP server To

Search ExploitDB for exploits by keywords or CVE IDs Retrieve detailed exploit information including proof-of-concept code Track and monitor recently added security exploits Obtain statistical insights on exploit distribution by platform and year Integrate real-time vulnerability data into AI-driven security tools Automate threat intelligence gathering with up-to-date exploit data

README

ExploitDB MCP Server

A Model Context Protocol server that provides access to ExploitDB functionality, developed by Cyreslab.ai. This server enables AI assistants like Claude to query information about security exploits and vulnerabilities, enhancing cybersecurity research and threat intelligence capabilities.

GitHub Repository: https://github.com/Cyreslab-AI/exploitdb-mcp-server Contact: contact@cyreslab.ai

Features

  • Exploit Search: Search for exploits by keywords, CVE IDs, platforms, and more
  • Exploit Details: Get comprehensive information about specific exploits, including code
  • CVE Lookup: Find all exploits related to specific CVE IDs
  • Recent Exploits: Track newly added exploits
  • Statistics: Get insights into exploit distribution by platform, type, and year
  • Automatic Updates: Keep the database up-to-date with scheduled updates

Installation

Prerequisites

  • Node.js (v16 or higher)
  • npm (v7 or higher)

Installation Steps

  1. Clone the repository:

    git clone https://github.com/Cyreslab-AI/exploitdb-mcp-server.git
cd exploitdb-mcp-server

  2. Install dependencies:

    npm install

  3. Build the project:

    npm run build

  4. Configure the server:

    • Create a .env file in the root directory based on .env.example
    • Adjust settings as needed (data directory, update frequency, etc.)

  5. Initialize the database:

    npm run update-db

  6. Run the server:

    node build/index.js

MCP Configuration

To use this server with Claude or other MCP-compatible assistants, add it to your MCP configuration:

{
  "mcpServers": {
    "mcp-exploitdb-server": {
      "command": "node",
      "args": ["/path/to/exploitdb-mcp-server/build/index.js"]
    }
  }
}

Usage

Search Exploits

Use the search_exploits tool to search for exploits in the database:

<use_mcp_tool>
<server_name>mcp-exploitdb-server</server_name>
<tool_name>search_exploits</tool_name>
<arguments>
{
  "query": "wordpress plugin",
  "platform": "php",
  "limit": 5
}
</arguments>
</use_mcp_tool>

Additional search parameters:

  • type: Filter by exploit type (e.g., webapps, remote, local)
  • cve: Filter by CVE ID
  • author: Filter by author name
  • start_date/end_date: Filter by date range (YYYY-MM-DD)
  • verified: Filter by verified status (true/false)
  • offset: For pagination

Get Exploit Details

Use the get_exploit tool to retrieve detailed information about a specific exploit:

<use_mcp_tool>
<server_name>mcp-exploitdb-server</server_name>
<tool_name>get_exploit</tool_name>
<arguments>
{
  "id": 12345,
  "include_code": true
}
</arguments>
</use_mcp_tool>

Find Exploits by CVE

Use the find_by_cve tool to find all exploits related to a specific CVE:

<use_mcp_tool>
<server_name>mcp-exploitdb-server</server_name>
<tool_name>find_by_cve</tool_name>
<arguments>
{
  "cve": "CVE-2021-44228",
  "limit": 10
}
</arguments>
</use_mcp_tool>

Get Recent Exploits

Use the get_recent_exploits tool to retrieve recently added exploits:

<use_mcp_tool>
<server_name>mcp-exploitdb-server</server_name>
<tool_name>get_recent_exploits</tool_name>
<arguments>
{
  "limit": 10
}
</arguments>
</use_mcp_tool>

Get Statistics

Use the get_statistics tool to get insights about the exploits in the database:

<use_mcp_tool>
<server_name>mcp-exploitdb-server</server_name>
<tool_name>get_statistics</tool_name>
<arguments>
{}
</arguments>
</use_mcp_tool>

Configuration Options

The server can be configured using environment variables or a .env file:

Variable Description Default
CLONE_REPOSITORY Whether to clone the ExploitDB repository false
REPOSITORY_URL URL of the ExploitDB repository https://gitlab.com/exploit-database/exploitdb.git
CSV_URL URL of the ExploitDB CSV file https://gitlab.com/exploit-database/exploitdb/-/raw/main/files_exploits.csv
DATA_DIR Directory to store data ./data
DB_PATH Path to the SQLite database ./data/exploitdb.sqlite
UPDATE_INTERVAL Update frequency in hours (0 to disable) 24
MAX_RESULTS Maximum number of results to return per query 10

Data Sources

This server uses data from the Exploit Database, maintained by Offensive Security. The data is either downloaded directly from the CSV file or cloned from the ExploitDB GitLab repository.

License

This project is licensed under the MIT License - see the LICENSE file for details.

Acknowledgements

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

Have feature suggestions or found a bug? Please open an issue on our GitHub repository or contact us directly at contact@cyreslab.ai.

exploitdb-mcp-server FAQ

How does the exploitdb-mcp-server keep its data current?
It supports automatic scheduled updates to regularly refresh the ExploitDB database, ensuring up-to-date exploit information.
Can I search for exploits using CVE IDs with this server?
Yes, the server allows querying exploits related to specific CVE IDs for precise vulnerability lookup.
What kind of exploit details can I retrieve?
You can get comprehensive information including exploit descriptions, affected platforms, and proof-of-concept code when available.
Is this server compatible with multiple AI assistants?
Yes, it is designed to work with various LLM providers like Claude, OpenAI, and Gemini, enabling broad integration.
How can this server enhance cybersecurity workflows?
By providing real-time access to exploit data, it enables automated threat intelligence, vulnerability research, and security analysis.
Does the server provide statistical data on exploits?
Yes, it offers insights into exploit distribution by platform, type, and year to support security trend analysis.
How do I contact the developers for support or questions?
You can reach out via email at contact@cyreslab.ai for assistance and inquiries.