Defense MCP
I thought about naming it ShieldsUP! or HardenSoft but I figure I'll just keep it simple at Defense MCP. I'm a total noob when it comes to serious system hardening. Every time I spun up a new Linux box I'd end up down the same rabbit hole — Googling iptables syntax, forgetting how to configure PAM, staring at endless Reddit tutorial posts. So I built this thing. Defense MCP Server packs 31 security tool modules with 250+ actions into one MCP server. Hook it up to Claude Desktop, Cursor, or any MCP client and just tell it what you want in plain English. It calls the right tool with the right flags so you don't have to. I mainly just ask it to do a full security audit. Takes a bit and then it'll spit out a huge report. Then you can pick and choose what you want it to harden or fix and get your LLM to do exactly that. What's in the box: Firewalls (iptables/nftables/UFW) · kernel & host hardening · CIS/HIPAA/SOC2 compliance checks · patch management · SSH & PAM access control · ClamAV malware scanning · YARA rules · file integrity with AIDE · auditd & fail2ban logging · TLS/LUKS/GPG encryption · container security (AppArmor/seccomp) · network defense & packet capture · secrets scanning · incident response & forensics · eBPF/Falco · SBOM & supply chain verification · zero trust (WireGuard/mTLS) · DNS security · vuln scanning (nmap/nikto) · WAF management · threat intel feeds · cloud security (AWS/GCP/Azure) · API security · honeypots · wireless auditing. Won't blow up your box: Everything runs dry-run by default. There's a command allowlist (no shell interpreters ever touch your system), input sanitization against injection, automatic backups before any changes, and rate limiting. If a tool like ClamAV isn't installed yet, the server grabs it from your package manager automatically. Built by a noob, for fresh installs. If I can use it, you can too. Requires: Linux (Debian/Ubuntu/RHEL/Arch), Node.js 22+
Executive verdict
trustsnap_d574c2edef40d21c- No segmented attention signals observed in the current window.
Current trust snapshot
trustsnap_d574c2edef40d21cCanonical machine links
Own this MCP?
Claim ownership, prove control with a GitHub, DNS, HTTP, MCP metadata, or email-domain challenge, revalidate now, publish a badge, configure monitoring, and unlock a verified server profile.
POST /v1/servers/bottobot/defense-mcp-server/revalidateBadge embed
[](https://verify.sentinelsignal.io/servers/bottobot/defense-mcp-server)
MCP TrustOps
TrustOps turns this report into operational controls: freshness SLAs, authenticated validation, semantic benchmarks, policy exports, alert subscriptions, badges, cost/compliance metadata, and runtime routing. Fresh trusted index decisions stay separate from long-tail inventory so stale scores do not masquerade as current evidence.
/v1/decideAlert subscription types
MCP Runtime hosting
No hosted runtime profile is available yet.
Production readiness class
Evidence confidence
Recommended for
No recommendation profile is available yet.
Client compatibility verdicts
No client compatibility verdicts are available yet.
Why compatibility is limited by client
No per-client remediation checklist is available yet.
Verdict traces
No verdict trace data is available yet.
Publishability policy profiles
No publishability policy profiles are available yet.
Compatibility fixtures
No compatibility fixtures are available yet.
Authenticated validation sessions
No authenticated validation detail is available yet.
Public validation is free. Authenticated validation is paid and proves scoped behavior, write-action safeguards, and authenticated tool execution.
Public server reputation
No public server reputation signals are available yet.
Incident & change feed
No incidents or changes recorded yet.
Capabilities
- OAuth:
- DCR/CIMD:
- Prompts:
- Homepage: https://github.com/bottobot/defense-mcp-server
- Docs: none
- Support: none
- Icon: https://api.smithery.ai/servers/bottobot/defense-mcp-server/icon
- Remote endpoint: none
- Server card: none
Security posture
No security posture summary available yet.
Agent Commerce & Payment Readiness - Beta
No agent-commerce assessment available yet.
Tool capability & risk inventory
No tool inventory available from the latest validation run.
Write-action governance
No write-action governance summary is available yet.
Action-controls diff
Need at least two validation runs before diffing action controls.
Why this score?
No score decomposition available yet.
Algorithmic score breakdown
Compatibility profiles
No compatibility profiles available.
Actionable remediation
No remediation items. Current evidence does not show urgent client-facing fixes.
Point loss breakdown
No current score penalties are recorded.
Validation diff
Need at least two validation runs before diffing changes.
Tool snapshot diff & changelog
Need at least two validation runs before building a tool changelog.
Connector replay
No connector replay evidence is available yet.
Transport compliance drilldown
No transport compliance drilldown is available yet.
Request association
No request-association evidence is available yet.
Utility coverage
No utility-coverage summary is available yet.
Benchmark tasks
No benchmark tasks are available yet.
Registry & provenance divergence
No provenance-divergence summary is available yet.
Active alerts
No active alerts for the current server state.
Aliases & registry graph
No aliases discovered for this server.
Alias consolidation
No alias consolidation details are available yet.
Install snippets
No install snippets available.
Agent access & tool surface
tools/list, prompts/list, and resources/list checks.bottobot/defense-mcp-server.Claims & monitoring
No verified maintainer claim recorded.
Alert routing
No alert routing is configured yet.
Maintainer analytics
No maintainer analytics available.
Maintainer response quality
No maintainer response quality signals are available yet.
Maintainer annotations
No maintainer annotations have been recorded yet.
Maintainer rebuttals & expected behavior
No maintainer rebuttals or expected-behavior overrides are recorded yet.
Latest validation evidence
No validation run available yet.
Raw evidence view
No raw evidence recorded.
Known versions
- No versions recorded.
Validation history
No historical trend summary is available yet.
Validation timeline
No validation timeline is available yet.
Recent validation runs
| Started | Status | Summary | Latency | Checks |
|---|---|---|---|---|
| No validation runs yet. | ||||