Private
MCP-ZAP服务器
2025-04-14
Spring Boot应用程序将OWASP ZAP视为MCP(模型上下文协议)服务器。它允许任何MCP兼容AI代理(例如Claude Desktop,Cursor)协调ZAP操作 - 启用,主动扫描,导入OpenAPI规格并生成报告。
3 years
Works with Finder
0
Github Watches
0
Github Forks
0
Github Stars
MCP ZAP Spring Boot Server
A Dockerized Spring Boot application exposing OWASP ZAP as an MCP (Model Context Protocol) server. It lets any MCP‑compatible AI agent (e.g., Claude Desktop, Cursor) orchestrate ZAP actions—spider, active scan, import OpenAPI specs, and generate reports.
Features
- MCP server: Exposes ZAP actions as MCP tools
- OpenAPI integration: Import remote or uploaded OpenAPI specs into ZAP and kick off active scans
- Report generation: Generate HTML/JSON reports and fetch contents programmatically
- Dockerized: Runs ZAP and the MCP server in containers, orchestrated via docker-compose
- Secure: Configure API keys for both ZAP (ZAP_API_KEY) and the MCP server (MCP_API_KEY)
Architecture
flowchart LR
subgraph "Docker Compose"
ZAP["OWASP ZAP (container)"]
MCP["MCP Server (Spring Boot)"]
end
Client["MCP Client (Claude, Cursor)"]
Client -->|HTTP/SSE + Bearer| MCP
MCP -->|ZAP REST API| ZAP
ZAP -->|scan, alerts, reports| MCP
Build
./gradlew clean build
Usage with Claude Desktop, Cursor, Windsurf or any MCP‑compatible AI agent
{
"mcpServers": {
"security-testing-mcp-server": {
"command": "java",
"args": [
"-Dspring.ai.mcp.server.stdio=true",
"-Dspring.main.web-application-type=none",
"-Dlogging.pattern.console=",
"-jar",
"/PROJECT_PATH/mcp-zap-server/build/libs/mcp-zap-server-0.0.1-SNAPSHOT.jar"
]
}
}
}
相关推荐
😎简单易用、🧩丰富生态 -大模型原生即时通信机器人平台| 适配QQ / 微信(企业微信、个人微信) /飞书 /钉钉 / discord / telegram / slack等平台| 支持chatgpt,deepseek,dify,claude,基于LLM的即时消息机器人平台,支持Discord,Telegram,微信,Lark,Dingtalk,QQ,Slack
Reviews
3.3
(6)
user_hMe8SYai
2025-04-24
The mcp-zap-server by dtkmn is a game-changer for my projects! It's incredibly reliable and easy to set up, making server management a breeze. The efficient design and powerful features simplify my workflow. Highly recommend for anyone needing a robust server solution!
user_KLVxckf2
2025-04-24
As a devoted user of the mcp-zap-server by dtkmn, I must say this product truly excels! Its intuitive design and flawless functionality make it an essential tool for any project. The seamless navigation and robust performance are standouts. I highly recommend it to anyone looking for a reliable server solution.
user_hsQ8IfbX
2025-04-24
The mcp-zap-server by dtkmn is an essential tool for any MCP application enthusiast. It's incredibly efficient and user-friendly, making process management a breeze. Highly recommend for its seamless performance and reliability.
user_XdsJgiXj
2025-04-24
As a long-time user of the mcp-zap-server, I am thoroughly impressed with its performance and reliability. Developed by dtkmn, this server stands out for its seamless integration and robust capabilities. The setup process is straightforward, and the welcome information provided is clear and helpful. If you're looking for a dependable server solution, the mcp-zap-server is definitely worth considering.
user_CfgBNWii
2025-04-24
As a dedicated user of the mcp-zap-server created by dtkmn, I am thoroughly impressed with its performance. The server is reliable, efficient, and easy to integrate into existing systems. It has significantly improved our workflow and productivity. The detailed documentation and welcoming user interface make it accessible even for beginners. Highly recommended!
user_WWXDiQpg
2025-04-24
As a dedicated user of the MCP ecosystem, I must say that the mcp-zap-server by dtkmn is a game-changer. Its seamless integration and robust performance have significantly improved my workflow. The user-friendly interface and comprehensive support make it a standout tool. Highly recommended for anyone in need of reliable server solutions!