How to Use the AbuseIPDB MCP in Claude Code

Q: What is the command to add AbuseIPDB to Claude Code?

Run claude mcp add --transport http abuseipdb-mcp -- . Make sure you put all your flags before the server name, then verify the connection with claude mcp list.

Pipe AbuseIPDB threat intelligence directly into your terminal workflows and CI/CD pipelines with Claude Code via this MCP Server.

See Vinkius in Action

Works with every AI agent you already use

…and any MCP-compatible client

MCP Servers - Free for Subscribers

Connect AbuseIPDB MCP to Claude Code

Create your Vinkius account to connect AbuseIPDB to Claude Code and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.

GDPR Free for Subscribers

Setup AbuseIPDB with Claude Code

Ask AI about this MCP

ChatGPT

Claude

Perplexity

Headless threat hunting via MCP Server

Terminal dwellers do not want another GUI. When an alert fires in PagerDuty, you can drop into your shell and have the CLI hit `check_ip_address` instantly. The raw threat score comes back right where you are already working. If the address looks dirty, the agent follows up with `get_ip_abuse_reports` to grab the raw incident logs. You can pipe that output straight into jq or append it to an incident ticket without touching a mouse.

Automated infrastructure defense

CI/CD pipelines need dynamic data to build secure environments. You can run a headless script that triggers `get_abuse_blacklist` during your deployment phase to fetch the latest known attackers. The agent grabs those addresses and formats them into a clean text file. Your pipeline then feeds that file directly into your AWS WAF or Cloudflare ruleset before the new infrastructure even goes live.

Pre-flight API validation

Shell scripts break when external endpoints drop connections. Before kicking off a massive log parsing job, your terminal agent runs `check_api_status` to ensure the threat database is responding. That quick verification step saves you from rate limits and timeout errors. If the service is down, the script exits cleanly instead of polluting your system logs with failed requests.

Setup guide

Set up AbuseIPDB MCP in Claude Code

Prerequisites

Claude Code CLI installed (npm install -g @anthropic-ai/claude-code)
Active Vinkius subscription with a valid endpoint token

1

Run the add command

Open your terminal and run the command shown on the right. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com. Use --scope user to make it available across all projects.
2

Verify the connection

Start a Claude Code session and type /mcp to list connected servers. You should see abuseipdb-mcp with a green status indicator.
3

Start using tools

Ask Claude Code something like "Check my latest AbuseIPDB transactions." It will automatically discover and invoke the available AbuseIPDB tools.

Terminal

claude mcp add --transport http abuseipdb-mcp https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp

Get your connection token →

Prerequisites

Claude Code CLI installed
Active Vinkius subscription with a valid endpoint token

1

Open the config file

Create or edit .mcp.json in your project root for project-level scope, or ~/.claude.json for user-level scope.
2

Add the AbuseIPDB MCP

Paste the JSON snippet shown on the right into the mcpServers object. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com.
3

Restart Claude Code

Start a new Claude Code session. Type /mcp to confirm the server is connected. The tools will be automatically available in your conversation.

.mcp.json

{
  "mcpServers": {
    "abuseipdb-mcp": {
      "type": "url",
      "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
    }
  }
}

Get your connection token →

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by AbuseIPDB. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

Why Choose Vinkius

Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.

Connect AbuseIPDB now

Real-time monitoring

Live

visibility into every interaction

Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.

Built-in savings

60%

lower AI costs

Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.

Single dashboard

One

place for every integration

Every tool your AI connects to, managed from a single screen. One account, complete control.

Common questions about AbuseIPDB MCP in Claude Code

Run `claude mcp add --transport http abuseipdb-mcp -- `. Make sure you put all your flags before the server name, then verify the connection with `claude mcp list`.

You certainly can. Run the CLI in headless mode within your runner container. It will fetch the threat intelligence and output the results to your build logs or PR comments.

The CLI outputs standard text to stdout. You can redirect the agent's response into grep, awk, or a file just like any native Unix command.

The agent fetches fresh data every time you invoke the tool. If you want to cache the results, just have the CLI write the output to a local JSON file for subsequent reads.

The remote endpoint only receives the exact IPv4 or IPv6 strings passed to the tool arguments. Vinkius wraps the execution in a secure sandbox, ensuring your surrounding environment variables and SSH keys never leave your machine.

Use it with your favorite AI tools

Connect this server to Cursor, Claude, VS Code, and more.

OpenAI Agents SDK sdk-python

Google ADK sdk-python

Pydantic AI sdk-python

Vercel AI SDK sdk-typescript