Intruder MCP. Audit cloud assets & vulnerabilities instantly
Intruder provides automated vulnerability scanning and security monitoring by connecting directly to the Intruder.io API. Use this MCP to audit cloud infrastructure, track security issues, list targets, and review historical scan reports for DevSecOps workflows.
Claude 
ChatGPT 
Cursor 
Gemini 
Windsurf 
VS Code 
JetBrains 
Vercel Give Claude and any AI agent real-world access
Fetch comprehensive lists of identified security issues, including severity levels (Low, Medium, High, Critical).
List all infrastructure and application targets that the system includes in its scans.
View which cloud platforms (AWS, Azure, Google Cloud) are configured to feed target data into Intruder.
Pull detailed records of past vulnerability assessments and the assets they covered.
Verify your account identity, check licensing status, or list organizational teams for access control checks.
Ask an AI about this
Waiting for input…
What AI agents can do with Intruder: 10 Tools for Security Auditing
These tools give you granular control over every aspect of your security posture, from listing specific vulnerabilities to checking account licenses.
Make your AI actually useful.
Add this MCP to Claude, Cursor, or Windsurf and your AI stops guessing. It gets real tools to look things up, take action, and handle the stuff you keep doing by hand.
Start using Intruder MCPGet Account
Retrieves your core Intruder account details to verify identity.
Get Issue
Fetches detailed descriptions, remediation advice, and affected targets for a...
Get Scan
Retrieves the full list of included targets, scan duration, and summary findings for...
Get Target
Gets metadata and associated tags to deeply examine a specific asset's security...
List Cloud Integrations
Lists all configured cloud integrations (AWS, Azure, Google Cloud) for auditing...
List Issues
Provides a list of identified vulnerability issues, including severity and status, for general posture checks.
List Licences
Lists all account licenses to verify subscription status and capacity.
List Scans
Retrieves a record of all vulnerability scans, including types and timestamps for...
List Targets
Lists every infrastructure and application target that is currently available to be...
List Teams
Displays a list of all organizational teams set up within the account for access...
Security and governance baked right in.
Pick your AI client below to get set up. Just create a Vinkius account, subscribe, and you're instantly up and running. We handle the entire backend infrastructure, delivering out-of-the-box support for HTTPS Streamable, SSE, and OAuth2—zero messy routing required.
Claude AI
Open Claude Settings
Go to claude.ai, click your profile icon, then navigate to Customize → Connectors.
Add Custom Connector
Click the "+" button and select Add custom connector. Paste your Vinkius endpoint URL:
https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp
Replace [YOUR_TOKEN_HERE] with your token
from cloud.vinkius.com. For OAuth-protected servers, expand
Advanced settings to add credentials.
Start a conversation
Open a new chat. The Intruder integration is available immediately — no restart needed.
Choose How to Get Started
Build a custom MCP for your own tools, or connect a ready-made integration from our catalog.
Build Your Own
Turn any API into an MCP. Import a spec, define Agent Skills, or deploy with MCPFusion.
- Import from OpenAPI, Swagger, or YAML specs
- Create Agent Skills with progressive disclosure
- Deploy to edge with MCPFusion framework
- Built in DLP, auth, and compliance on each call
- Real time usage dashboard and cost metering
- Publish to catalog or keep private
Make Your AI Do More
Start with Intruder, then connect any of our 5,200+ other servers whenever your AI needs more. One click, no limits.
- Use this MCP plus 5,200+ others, all in one place
- Add new capabilities to your AI anytime you want
- Connections are secured and governed automatically
- Track usage and costs across all your servers
- Works with Claude, ChatGPT, Cursor, and more
- New servers added to the catalog weekly
Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Intruder. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.
VINKIUS CLOUD
Cloud Hosted
Managed infra
V8 Isolated
Sandboxed per request
Zero-Trust Proxy
No stored credentials
DLP Enforced
Policy on each call
GDPR Compliant
EU data residency
Token Compression
~60% cost reduction
The Security Audit Process Is a Click-Heavy Nightmare
Today, auditing security risks means logging into the cloud provider console, then hopping over to the vulnerability dashboard. You pull one report, copy the asset ID, paste it into a second tool to check metadata, and if you find an issue, you have to open a third system just for remediation advice. It's hours of context switching and manual data correlation.
With this MCP, your agent handles the whole chain. You ask one question—like 'What is our current risk profile?'—and it pulls together the list issues report, confirms all cloud integrations are active, and even provides specific get issue advice for every high-severity finding.
Get a Complete Security Picture with Intruder MCP
The manual steps that disappear include cross-referencing asset lists against scan reports, checking license expiration dates across multiple accounts, and summarizing findings from various cloud sources. Your agent handles the sequencing.
You stop compiling data and start making decisions. The output is a cohesive narrative of risk, not just a pile of raw JSON objects.
What Intruder MCP does for your AI
Managing security compliance used to mean clicking through dozens of dashboards and cross-referencing spreadsheets. Now, your agent can handle the heavy lifting. This connector lets you pull all necessary data points into a single conversation thread. You can start by seeing which assets need vetting using the list targets tool, then check for vulnerabilities across the board with the list issues tool.
From there, you can drill down to get the remediation advice on any specific problem found with the get issue tool. It’s essential for automating security audits and maintaining a clear picture of your cloud infrastructure's health. Just connect this MCP through Vinkius, and your AI client gets immediate access to all these deep-level auditing capabilities.
019d75bb-0e60-7020-9b30-d464254f80f9 
How to set up Intruder MCP
The bottom line is you get actionable security reports directly into your conversation thread without leaving your primary workflow tool.
Tell your agent which security scope you need to audit; this might mean starting with listing all configured cloud integrations.
Ask the agent to pull a list of vulnerabilities or scan records. This generates a large dataset that needs filtering and prioritization.
Use the detailed results, such as getting a specific issue description, to generate immediate remediation steps for your team.
Who uses Intruder MCP
This MCP is for the DevSecOps engineer who can't trust a dashboard to tell them everything, or the Security Auditor who needs proof of compliance across multiple cloud environments. If you spend time manually correlating vulnerability reports with asset lists, this is for you.
Automates post-deployment security checks by querying the list scans tool and cross-referencing findings with target metadata.
Performs compliance checks by listing all configured cloud integrations and reviewing account licenses to prove coverage across environments.
Verifies the security status of new or existing assets by getting target details and understanding organizational team access controls.
Benefits of connecting Intruder MCP
Pinpoint exact remediation steps immediately. Instead of just seeing a critical vulnerability, you can use the get issue tool to pull detailed advice on how to fix it.
Maintain an accurate security inventory by using list targets and get target together. You'll know exactly which assets are currently being scanned and what their metadata is.
Verify cloud coverage without logging into three different provider consoles. The list cloud integrations tool shows you all connected AWS, Azure, and Google Cloud sources in one place.
Keep track of compliance over time. Using list scans gives you a verifiable history, letting you prove how often your vulnerability checks run for an audit.
Simplify user management by listing teams or getting account details. You can verify organizational access controls without calling multiple internal directories.
Intruder MCP use cases
Auditing a new cloud deployment
A platform architect needs to ensure all three major clouds are covered. They ask their agent, which uses list cloud integrations, to confirm AWS, Azure, and Google Cloud connections exist. The agent confirms the integration status across all platforms.
Responding to a compliance audit request
A security auditor must prove that vulnerabilities are tracked weekly. They use list scans to get a chronological record of assessment runs, and then list issues to summarize the current risk level for management.
Debugging an unknown vulnerability
An engineer finds a suspicious finding but needs more context. They identify the issue using list issues, then use get issue on that specific ID to pull detailed remediation advice and understand exactly which target was affected.
Preparing for a major system migration
A team lead is migrating systems and needs an asset checklist. They run list targets first to see every asset name, then use get target on each one to pull all relevant metadata before the migration even starts.
Intruder MCP tradeoffs
What to watch out for, and the recommended way to handle each one.
Assuming full coverage
A manager sees a vulnerability report and assumes the problem is fixed. They only check the last few results, missing issues from older scans.
Always use list targets to see all assets included in scope, then call list scans to ensure you are reviewing history, not just the most recent snapshot.
Ignoring cloud sources
A team assumes their security coverage is complete because they checked one dashboard, missing critical targets hosted on a secondary cloud platform.
Start by calling list cloud integrations to confirm every source—AWS, Azure, Google Cloud—is connected and feeding data into the system.
When to use Intruder MCP
Use this MCP if your job requires continuous security compliance checking across diverse, multi-cloud environments. If you need a single point of truth for vulnerability status, asset inventory, or scan history, this is it. Don't use it if you only need to check basic account credentials; that's just an API call. You also shouldn't rely on it to fix the vulnerabilities—it gives remediation advice via get issue, but your team still has to do the work. If all you want is a simple list of users and nothing related to infrastructure or compliance, this MCP provides too much context.
Frequently asked questions about Intruder MCP
How do I find out which assets are included in my security scans using Intruder MCP? +
You list targets to see all infrastructure and application endpoints that the system is currently scanning. This tool gives you a definitive count of your scope.
What if I need remediation advice for a specific vulnerability found by Intruder MCP? +
Use the get issue tool, passing in the unique ID of the finding. It returns detailed descriptions and actionable steps to fix the flaw immediately.
Can Intruder MCP check if all my cloud providers are integrated for auditing? +
Yes, you call list cloud integrations. This tool audits your setup across AWS, Azure, and Google Cloud, confirming connectivity status in one place.
Does Intruder MCP help me track historical scan performance? +
You use the list scans tool to retrieve a record of all past assessments. This lets you prove compliance by showing consistent monitoring over time.
What does get target do with my asset information in Intruder MCP? +
The get target tool retrieves deep metadata and associated tags for any specific asset, allowing you to verify its exact role or owner within the infrastructure.