Marshal Mcp
What is Marshal Mcp
Marshal-MCP is an MCP server designed for automated vulnerability scanning tasks in emergency response scenarios. It is built on the go-mcp framework available on GitHub.
Use cases
Use cases include automated vulnerability scanning for web applications, periodic security assessments, and integration with other security tools for enhanced incident response workflows.
How to use
To use Marshal-MCP, clone the repository, compile the code, and run the server with a specified configuration file. Ensure to set the required API token in the configuration for authentication.
Key features
Key features include receiving vulnerability characteristics and a list of URLs to scan, automatically generating nuclei vulnerability scanning POCs, uploading POCs to the Marshal platform, creating scanning workflows, and supporting both HTTP API and MCP protocols.
Where to use
Marshal-MCP can be used in cybersecurity environments, particularly for organizations that require automated vulnerability assessments and incident response.
Clients Supporting MCP
The following are the main client software that supports the Model Context Protocol. Click the link to visit the official website for more information.
Overview
What is Marshal Mcp
Marshal-MCP is an MCP server designed for automated vulnerability scanning tasks in emergency response scenarios. It is built on the go-mcp framework available on GitHub.
Use cases
Use cases include automated vulnerability scanning for web applications, periodic security assessments, and integration with other security tools for enhanced incident response workflows.
How to use
To use Marshal-MCP, clone the repository, compile the code, and run the server with a specified configuration file. Ensure to set the required API token in the configuration for authentication.
Key features
Key features include receiving vulnerability characteristics and a list of URLs to scan, automatically generating nuclei vulnerability scanning POCs, uploading POCs to the Marshal platform, creating scanning workflows, and supporting both HTTP API and MCP protocols.
Where to use
Marshal-MCP can be used in cybersecurity environments, particularly for organizations that require automated vulnerability assessments and incident response.
Clients Supporting MCP
The following are the main client software that supports the Model Context Protocol. Click the link to visit the official website for more information.
Content
漏洞扫描 MCP 服务器
基于 github.com/ThinkInAIXYZ/go-mcp 实现的 MCP 服务器,用于自动化应急响应下的漏洞扫描任务。
功能特点
- 接收漏洞特征和扫描URL列表
- 自动生成 nuclei 漏洞扫描 POC
- 上传 POC 到 Marshal 平台
- 创建扫描工作流
- 自动创建并提交扫描任务
- 支持自定义扫描参数(集群、优先级、端口等)
- 同时支持 HTTP API 和 MCP 协议
快速开始
安装和运行
# 克隆仓库
git clone https://github.com/your-username/marshal-mcp.git
cd marshal-mcp
# 编译
go build -o marshal-mcp .
# 运行
./marshal-mcp --config=config/config.yaml
配置文件
修改 config/config.yaml 文件:
# MCP服务器配置
server:
port: 8000
timeout: 60
# Marshal API配置
api:
url: "http://your-marshal-api-url" # Marshal API服务地址
token: "your-api-token" # API认证令牌(必填)
注意: api.token 字段是必填的,用于 Marshal API 的认证。请确保设置了有效的 token 值。
使用方法
MCP 协议
在支持 MCP 的客户端中使用
参数说明
| 参数名 | 类型 | 必填 | 默认值 | 说明 |
|---|---|---|---|---|
| vuln_name | string | 是 | - | 漏洞名称 |
| vuln_desc | string | 是 | - | 漏洞描述/特征 |
| urls | string[] | 是 | - | 需要扫描的URL列表 |
| cluster | string | 是 | - | 扫描集群 |
| priority | string | 否 | low | 优先级(high/medium/low) |
| task_name | string | 否 | 年月日-漏洞名称 | 任务名称 |
| task_num | int | 否 | 100 | 任务数量 |
| cycle_scan | bool | 否 | false | 是否周期扫描 |
| domain | string | 否 | - | 域名 |
| ip | string | 否 | - | IP地址 |
| port | string | 否 | 1-65535 | 扫描端口范围 |
| engine | string | 否 | naabu | 扫描引擎(naabu/osint) |
| interval_days | int | 否 | 7 | 扫描间隔天数 |
API认证说明
本服务器调用的Marshal API需要认证。认证方式为在HTTP请求头中添加Authorization字段:
Authorization: <your-token>
确保在config/config.yaml中正确设置了api.token字段,服务器会自动将其添加到所有API请求中。
Dev Tools Supporting MCP
The following are the main code editors that support the Model Context Protocol. Click the link to visit the official website for more information.
