ZAP MCP Proxy
by madmystic · security · mcp-server, glama
A lightweight MCP server that wraps OWASP ZAP's REST API as Model Context Protocol tools, enabling AI agents to perform automated security scanning.
Source: https://github.com/madmystic/zap-mcp-proxy
Install
git clone https://github.com/madmystic/zap-mcp-proxyUse this forAI-extracted
- →Run automated security scans against web applications using OWASP ZAP through Claude
- →Identify vulnerabilities in APIs and web services via AI-driven penetration testing
- →Generate security reports from ZAP scan results with AI analysis and remediation suggestions
Works with
Tags: mcp-server, glama
Source: glama
About security MCP servers and Claude skills
Security MCP servers let agents scan dependencies, audit logs, check for vulnerabilities, and enforce policy guardrails. Critical for any agent that touches production.
ZAP MCP Proxy is one of hundreds of security entries indexed on Skiln. Browse the full security category or the complete directory of Claude skills, MCP servers, agents, commands, and hooks.
Related security MCPs and skills
- MCP Healthcare Server by SaadRiaz99
An MCP server for clinical workflows with tools for patient lookup, appointment booking, prescriptions, drug interactions, symptom triage, lab results, insurance eligibility, and telehealth, enforcing role-based access control and audit logging.
- Eleion Scanner MCP by hernaninverso
Enables AI agents to register domains, prove ownership, queue security scans (headers, TLS, DNS, ports, tech-fingerprint), and retrieve findings with severity and CVE details via the Eleion Scanner API.
- MCP OAuth Test by emave
Multi-tenant MCP server with OAuth 2.1 authorization, enabling tenant-scoped tool access and audit logging.
- saas-alerts-mcp by wyre-technology
MCP server for Kaseya SaaS Alerts, providing tools to query security events, manage customers/users, handle devices, billing, reports, and partner settings via the External Partner API.
- blastp_mcp by AltriaPendragon49
Wraps NCBI BLAST+ blastp into a FastMCP service for auditable protein homology searches with local output artifacts and structured metadata.
- frida-mcp by neeetman
A simple MCP server exposing persistent, scriptable Frida dynamic instrumentation to an AI agent for Windows reversing, malware/security analysis, and dynamic debugging.
- ABRA Flexi MCP Server by vvitovec
Connects to ABRA Flexi over its REST API to read companies, evidence, partners, products, balances, and overdue items, while supporting guarded write flows with validation and audit logging.
- mcp-law-server by oranger07
MCP server for retrieving and verifying audit regulations, clauses, and audit items using vector and relational databases.
Frequently asked questions
How do I install ZAP MCP Proxy?
Add the install command above to your Claude Code, Cursor, or Windsurf MCP configuration. Most servers register via npx, a local command, or a Docker image. Refer to the source repository for environment variables and credential requirements.
Which clients support ZAP MCP Proxy?
Any MCP-compatible client works: Claude Desktop, Claude Code CLI, Cursor, Windsurf, Zed, and VS Code with the official MCP extension. OpenAI Codex and GitHub Copilot increasingly support MCP via adapter bridges.
Is ZAP MCP Proxy free?
The server itself is typically open source. Any upstream service (API keys, paid tiers, hosted infrastructure) may have its own pricing. Check the source repository for details.