10 boosters for "threat" — open source, verified from GitHub, ready to install
A specialized security expert agent that performs threat modeling, vulnerability assessment, and secure code review to help developers build secure applications and cloud infrastructure. Ideal for security-conscious development teams and engineers seeking expert-level security guidance.
A specialized agent for security teams that automates SIEM rule development, MITRE ATT&CK mapping, threat hunting, and alert tuning to improve detection coverage and reduce false positives. Benefits SOC engineers, threat hunters, and security operations teams looking to build robust detection pipelines.
Generates repository-grounded threat models that identify trust boundaries, assets, attack paths, and mitigations in application code. Ideal for security engineers and developers performing AppSec threat modeling on specific codebases.
Expert guidance for proactive threat hunting in security operations, enabling users to search for IOCs, campaigns, and TTPs across their SIEM environment. Ideal for security analysts and threat hunters conducting investigations.
"name": "clawdstrike", "name": "Backbay Labs", "email": "hello@backbay.io"
secops-hunt provides expert threat hunting guidance to help security teams proactively identify undetected threats, IOCs, and TTPs in their environment. Security operations professionals and threat hunters benefit from structured, tool-aware hunting workflows.
MCP server integration for IPLocate.io that enables IP geolocation, network information lookup, and threat/VPN detection within Claude desktop and code environments. Developers building security tools, location-based services, or threat analysis systems would benefit from direct API access.
PreClick is an MCP server that scans URLs for threats and validates intent matching before autonomous agents click links, protecting against malicious redirects and accidental misclicks. Developers building AI agents and autonomous workflows benefit from reduced security risks and improved agent reliability.
"id": "ai.scamverify/mcp", "name": "ScamVerify Threat Verification", "description": "AI-powered scam and threat verification for phone numbers, URLs, texts, and emails.",
"name": "alderpost-mcp", "description": "MCP server for Alderpost Intelligence API — 8 endpoints bundling premium data sources (VirusTotal, People Data Labs, Hunter.io, AbuseIPDB, Qualys SSL Labs, NIH RxNorm, US Census, ESPN, The Odds API). Domain security, company intel, threat analysis, compliance
