MCP-FIRST · v2.0
The First MCP Security Scanner - Also covers AI Skills & IDE Extensions
Before you connect an MCP Server, scan it. 10,000+ MCP servers exist. Zero are audited.
What are you scanning?
🔌 MCP Server
📜 AI Skill
🧩 IDE Extension
// paste your MCP server, skill, or extension code here
MCP · Skill · Extension · Any code
| Ctrl+Enter to scan
▶ SCAN NOW
Powered by
AI Engine
· 60 threat families · MCP-aware
// why_mcp_security_matters
Why MCP scanning matters - now
MCP (Model Context Protocol) lets AI assistants connect to anything: your Gmail, Notion, GitHub, files. A malicious MCP server runs on your machine with full permissions.
📊
10,000+ MCP servers
Anyone can publish one. Most aren't audited.
🔓
Full system access
MCP servers run locally with your credentials.
⚠️
No security standard
No app store review. No code signing. No mandatory audit.
// how_it_works
01
Paste the Code
MCP server, AI Skill, IDE extension. Any language.
02
AI Deep Scan
MCP-specific signatures + Advanced AI deep analysis.
03
Clear Verdict
SAFE / REVIEW / BLOCK - plain English.
// also_scans
Beyond MCP - full coverage
Same scanner, dedicated coverage for two more categories:
📜
AI Skills
AI Skills, Cursor Skills, custom prompts. Catches prompt injection, role confusion, hidden payloads.
Skills scanner →
🧩
IDE Extensions
VS Code, Cursor, JetBrains extensions. Catches credential theft, supply chain attacks.
Extension scanner →
// live_threat_intelligence
// pricing
Pick your plan
Start free. Upgrade when you need more scans.
Free
Try it out
$0
7 scans / month
All 60 threat families (MCP + general)
Advanced AI deep analysis
Get Started
MOST POPULAR
Pro
Solo developer
$9/mo
150 scans / month
All 60 threat families
Advanced AI deep analysis
Email support
Subscribe
Team
Startup
$29/mo
500 scans / month
All 60 threat families
Advanced AI deep analysis
API access
Priority scanning
Subscribe
Business
Growing company
$99/mo
3,000 scans / month
All 60 threat families
Advanced AI deep analysis
API access
Priority scanning
Email support
Subscribe
Enterprise
Large organization
Custom
Custom volume + SLA
All 60 threat families
99.9% SLA + dedicated support
Custom MCP integrations
Contact Us
// stay_in_the_loop
Get alerted to new MCP threats
We'll email you when we detect new MCP threat patterns. No spam.
Subscribe
Free, unsubscribe anytime.
// 60_threat_families_covered
MCP-Specific Threats
Tool Poisoning
Indirect Prompt Injection
MCP Credential Exfiltration
Cross-Tool Confusion
Tool Description Manipulation
MCP Session Hijacking
Resource Hijacking
Context Exfiltration
Tool Result Injection
MCP Auth Bypass
General Code Threats
Prompt Injection
OS Command Execution
Data Exfiltration
API Key Theft
Reverse Shell
Role Confusion System Override
Jailbreak Patterns SQL Injection
Path Traversal Template Injection
Deserialization Attack Env Variable Theft
Network Callback DNS Exfiltration
Credential Theft Cloud Credential Theft
Base64 Obfuscation Unicode Tricks
Char Code Hiding Hex Obfuscation
XOR Encoding Steganography
Zero-Width Characters Homoglyph Attack
Resource Exhaustion Fork Bomb
Zip Bomb Memory Exhaustion
C2 Callback Privilege Escalation
File System Attack Symlink Attack
Crypto Mining Ransomware Pattern
Wiper Pattern Supply Chain Attack
Dependency Confusion Typosquatting
Logic Bomb Time-Based Attack
Memory Poisoning XXE Injection
SSRF Attempt Regex DoS
Billion Laughs Recursive Bomb
Clipboard Hijack Keylogger Pattern
Screen Capture Browser Hijack
Cookie Theft Dynamic Eval