mcp-shodan (w0h1v)
MCP server for Shodan giving IP recon, DNS lookups, and CVE/CPE vulnerability intelligence to Claude Code, Codex, and Gemini CLI.
๐ก๏ธ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for mcp-shodan (w0h1v), derived from its capabilities.
AIVSS 7.8 ยท High
View MAESTRO 7-layer threat model โOverview
w0h1v's mcp-shodan exposes Shodan's network intelligence to multiple agent CLIs, covering IP reconnaissance, DNS operations, device discovery, and CVE/CPE vulnerability tracking. It targets terminal-based agents (Claude Code, Codex, Gemini CLI) as well as Claude Desktop. Handling a Shodan key and returning external recon data makes it both an offensive-recon aid and a data-injection surface.
Key features
- IP reconnaissance and DNS lookups
- CVE/CPE vulnerability intelligence
- Works across Claude Code, Codex, Gemini CLI
Use cases
- Reconnaissance from a terminal-based agent
- Track vulnerabilities tied to discovered hosts