Security Operations Multi-Tool Platform – a Python-based MCP server that wraps many popular security scanners/fuzzers (Nuclei, FFUF, Amass, Nmap, etc.) behind one unified JSON-speaking interface and ships with first-class Docker support.
https://github.com/securityfortech/secops-mcpStop context-switching between a dozen different security tools. This MCP server puts Nuclei, FFUF, Amass, Nmap, SQLMap, and 8 other essential security tools behind one unified JSON interface that your AI agent can orchestrate seamlessly.
You know the drill: Nmap for network discovery, Nuclei for vulnerability scanning, FFUF for fuzzing, Subfinder for subdomain enumeration. Each tool has its own CLI syntax, output format, and quirks. Your AI agent needs to understand 13 different interfaces to run a comprehensive security assessment.
SecOps MCP solves this by wrapping everything in consistent JSON responses and a single entry point. Your AI agent learns one interface and gains access to your entire security toolkit.
Unified Tool Orchestration: All 13 tools return standardized JSON with consistent success, error, and results fields. No more parsing different output formats or handling tool-specific error codes.
AI Agent Ready: Built specifically for AI orchestration. Your agent can chain tools together - run Subfinder to discover subdomains, pipe results to HTTPX for service detection, then trigger Nuclei scans on live targets.
Docker Deployment: Complete environment isolation with all tools pre-installed. No dependency conflicts or "works on my machine" issues when deploying across different environments.
Production Grade: Robust error handling, configurable timeouts, and tool-specific parameter validation. Won't crash your workflows when a tool times out or returns unexpected data.
Automated Bug Bounty Workflows: Your AI agent runs the full reconnaissance pipeline - Amass for asset discovery, Subfinder for subdomain enumeration, HTTPX for service fingerprinting, then Nuclei for vulnerability scanning. All orchestrated through simple JSON calls.
Continuous Security Monitoring: Integrate with CI/CD pipelines where your AI agent performs security checks on new deployments. SQLMap for database security, Dirsearch for path discovery, XSStrike for XSS detection - all automated based on application changes.
Threat Hunting Operations: Let your AI agent correlate findings across multiple tools. TLSX for certificate analysis, IPInfo for geolocation data, Hashcat for credential analysis - all feeding into a unified security assessment.
Red Team Exercises: Orchestrate complex attack chains where tool outputs feed into subsequent tools. Network mapping with Nmap, followed by targeted fuzzing with WFuzz, then exploitation with SQLMap - all managed programmatically.
Add to your MCP client configuration:
{
"servers": {
"secops": {
"command": "python",
"args": ["main.py"],
"cwd": "/path/to/secops-mcp"
}
}
}
Your AI agent can immediately access all tools:
# Run subdomain discovery
response = mcp.call_tool("subfinder", {"domain": "example.com"})
subdomains = response["results"]["subdomains"]
# Chain into vulnerability scanning
for subdomain in subdomains:
nuclei_results = mcp.call_tool("nuclei", {
"target": subdomain,
"templates": "cves,exposures"
})
Docker Deployment: The included Dockerfile handles all tool installations and dependencies. Deploy anywhere containers run without worrying about individual tool compatibility or system requirements.
Environment Flexibility: Works in your local development environment, CI/CD pipelines, or production security orchestration platforms. Same interface everywhere.
This isn't just another security tool - it's the bridge that lets your AI agent become a security expert. When your agent can seamlessly orchestrate Nmap network scans, Nuclei vulnerability detection, and SQLMap database testing through one consistent interface, you're not just automating tasks - you're building intelligent security workflows.
The 107 stars and active development show this is already solving real problems for security teams who need AI-driven automation without the complexity of managing multiple tool interfaces.