Back to Browse
Free
Server data from the Official MCP Registry
Register/verify your domains, queue security scans, and read findings (CVE, severity).
About
Register/verify your domains, queue security scans, and read findings (CVE, severity).
Security Report
5.2
Moderate5.2Moderate RiskThis is a well-designed MCP server with strong security practices. Authentication via API key is properly implemented, input validation is strict with type-safe argument parsing, and the code has no dangerous patterns like hardcoded credentials or arbitrary code execution. The server appropriately restricts functionality to user-owned domains via the backend API's verification mechanism. Minor code quality improvements around error handling could further enhance robustness. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue.
3 files analyzed · 7 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
What You'll Need
Set these up before or after installing:
Tenant API key from https://scan.eleion.io (you can only scan domains you own and have verified)Required
Environment variable: SCANNER_API_KEY
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-hernaninverso-eleion-scanner-mcp": {
"env": {
"SCANNER_API_KEY": "your-scanner-api-key-here"
},
"args": [
"-y",
"eleion-scanner-mcp"
],
"command": "npx"
}
}
}Documentation
View on GitHubFrom the project's GitHub README.
Eleion Scanner — MCP server
Drive the Eleion security scanner from an AI agent: register one of your own
domains, prove ownership, queue a security scan (headers, TLS, DNS, ports, tech-fingerprint, plus
AI-specific checks), and read the findings — severity, CVE, title, priority. Wraps the hosted Eleion
Scanner API (https://scanner-api.eleion.io).
Tools
| Tool | What it does |
|---|---|
scanner_register_target(target_url) | Register one of your domains; returns the DNS TXT / well-known record to publish for ownership proof. |
scanner_verify_target(target_id) | Verify the ownership record you published. |
scanner_start_scan(target_id, scan_profile?) | Queue a scan (basic/full/deep) over a verified target. |
scanner_get_scan_status(scan_id) | Poll a scan's status and finding count. |
scanner_get_findings(scan_id) | List the findings (severity, CVE, template, title, priority). |
Setup
{
"mcpServers": {
"eleion-scanner": {
"command": "npx",
"args": ["-y", "eleion-scanner-mcp"],
"env": { "SCANNER_API_KEY": "your_tenant_key" }
}
}
}
Get a tenant key at https://scan.eleion.io. You can only scan domains you have registered and verified ownership of — this is not an arbitrary-target scanner.
The scan worker runs the analysis server-side; large scans take time, so poll scanner_get_scan_status
until completed. Your registered domains and findings are processed by the hosted API. MIT licensed.
Reviews
No reviews yet
Be the first to review this server!
More Developer Tools MCP Servers
Toleno
Freeby Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
137
Stars
532
Installs
8.0
Security
4.8
Local
mcp-creator-python
Freeby mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.
-
Stars
78
Installs
10.0
Security
4.6
Local
MarkItDown
Freeby Microsoft · Content & Media
Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption
156.1K
Stars
43
Installs
6.0
Security
5.0
Local