MCP App StoreMCP App Store
from claude-mcp-sentinel75
Security monitoring and runtime protection for Claude Skills and MCP servers: static scans, update-diff analysis, threat intelligence, and an optional PreToolUs
MCP Sentinel scans installed Claude Skills and MCP servers for vulnerabilities and malicious behavior by combining static analysis, external threat intelligence, coherence checks, and update diff detection. Version 2 adds a PreToolUse runtime hook that inspects tool calls in real time and can block credential exfiltration, dangerous shell patterns, and known-malicious domains before they execute.
Run Sentinel when auditing installed skills/MCPs, before installing a new skill or MCP (pre-install check), after noticing suspicious behavior, or on a regular schedule to detect supply-chain changes. Offer the runtime hook when the user requests live protection or when a suspicious update is detected.
Designed for agents with file access, shell execution, and websearch capabilities (e.g., Claude Code, security-focused assistants). The runtime hook requires Python 3 and jq for installer scripts.
MCP Sentinel is a comprehensive security monitoring skill for Claude Code that scans installed skills/MCPs against threat databases, performs static analysis with coherence checks, and offers a v2 PreToolUse runtime hook to block malicious calls before execution. No bundled scripts were available to test; the SKILL.md itself is exceptionally detailed with clear workflows and well-documented patterns. The only security deduction is shell injection risk from running install/uninstall hook scripts.
Well-architected security skill. The coherence analysis concept is particularly strong — catching novel attacks that pattern-matching alone would miss. No scripts were included in the fetch payload to run-test, so scoring is based purely on static analysis of the SKILL.md.
Reverse Engineer
Provides step-by-step guidance and best practices for binary reverse engineering: static analysis, dynamic tracing, disassembly, and documentation workflows for
Sandbox0 Integration
Guidance and templates for integrating Sandbox0 sandboxing into AI agents — CLI/SDK patterns, templates, volumes, network policy, and deployment choices.
Ip2Location IO Automation (Composio)
Automate Ip2location IO tasks via Composio's Rube MCP toolkit — discover tools, verify connections, and execute schema-compliant workflows safely.
CTF Write-up Generator
Generate a concise, reproducible submission-style CTF writeup with a one-path solution script, metadata, and a short checklist for fast verification.
Skill Issue — Skill Auditor
Scan and audit installed agent skills to produce a health report covering inventory, usage, dependency checks, version status, and actionable recommendations.
Azure External Attack Surface Management
Provides expert guidance for Azure External Attack Surface Management (EASM): quotas, configuration, integrations, and exporting inventory to analytics platform
Smalltalk MCP
Connects an LLM (Claude/OpenAI/etc.) to a live Smalltalk (Squeak/Cuis) image over MCP for browsing, evaluating and modifying Smalltalk code.
Node.js Best Practices
Guidelines and decision-making for Node.js architecture, runtime, async patterns, security, validation, and testing to inform framework and system choices.