# Intruder MCP

> Intruder provides automated vulnerability scanning and security monitoring by connecting directly to the Intruder.io API. Use this MCP to audit cloud infrastructure, track security issues, list targets, and review historical scan reports for DevSecOps workflows.

## Overview
- **Category:** security-compliance
- **Price:** Free
- **Tags:** cybersecurity, vulnerability-assessment, security-monitoring, cloud-security, threat-detection, audit-logs

## Description

Managing security compliance used to mean clicking through dozens of dashboards and cross-referencing spreadsheets. Now, your agent can handle the heavy lifting. This connector lets you pull all necessary data points into a single conversation thread. You can start by seeing which assets need vetting using the list targets tool, then check for vulnerabilities across the board with the list issues tool. From there, you can drill down to get the remediation advice on any specific problem found with the get issue tool. It’s essential for automating security audits and maintaining a clear picture of your cloud infrastructure's health. Just connect this MCP through Vinkius, and your AI client gets immediate access to all these deep-level auditing capabilities.

## Tools

### get_account
Retrieves your core Intruder account details to verify identity.

### get_issue
Fetches detailed descriptions, remediation advice, and affected targets for a specific security flaw.

### get_scan
Retrieves the full list of included targets, scan duration, and summary findings for one assessment run.

### get_target
Gets metadata and associated tags to deeply examine a specific asset's security status.

### list_cloud_integrations
Lists all configured cloud integrations (AWS, Azure, Google Cloud) for auditing purposes.

### list_issues
Provides a list of identified vulnerability issues, including severity and status, for general posture checks.

### list_licences
Lists all account licenses to verify subscription status and capacity.

### list_scans
Retrieves a record of all vulnerability scans, including types and timestamps for historical tracking.

### list_targets
Lists every infrastructure and application target that is currently available to be scanned.

### list_teams
Displays a list of all organizational teams set up within the account for access control understanding.

## Prompt Examples

**Prompt:** 
```
List all active targets in my Intruder account.
```

**Response:** 
```
I'll fetch the list of your infrastructure and application targets.
```

**Prompt:** 
```
Show me the latest vulnerability issues found.
```

**Response:** 
```
I'll retrieve the most recent security issues identified by Intruder.
```

**Prompt:** 
```
Check the status of my recent scans.
```

**Response:** 
```
I'll look up the history and current status of your vulnerability scans.
```

## Capabilities

### Reviewing Security Vulnerabilities
Fetch comprehensive lists of identified security issues, including severity levels (Low, Medium, High, Critical).

### Tracking Asset Scope
List all infrastructure and application targets that the system includes in its scans.

### Auditing Cloud Connections
View which cloud platforms (AWS, Azure, Google Cloud) are configured to feed target data into Intruder.

### Reviewing Scan History
Pull detailed records of past vulnerability assessments and the assets they covered.

### Checking Account Credentials
Verify your account identity, check licensing status, or list organizational teams for access control checks.

## Use Cases

### Auditing a new cloud deployment
A platform architect needs to ensure all three major clouds are covered. They ask their agent, which uses list cloud integrations, to confirm AWS, Azure, and Google Cloud connections exist. The agent confirms the integration status across all platforms.

### Responding to a compliance audit request
A security auditor must prove that vulnerabilities are tracked weekly. They use list scans to get a chronological record of assessment runs, and then list issues to summarize the current risk level for management.

### Debugging an unknown vulnerability
An engineer finds a suspicious finding but needs more context. They identify the issue using list issues, then use get issue on that specific ID to pull detailed remediation advice and understand exactly which target was affected.

### Preparing for a major system migration
A team lead is migrating systems and needs an asset checklist. They run list targets first to see every asset name, then use get target on each one to pull all relevant metadata before the migration even starts.

## Benefits

- Pinpoint exact remediation steps immediately. Instead of just seeing a critical vulnerability, you can use the get issue tool to pull detailed advice on how to fix it.
- Maintain an accurate security inventory by using list targets and get target together. You'll know exactly which assets are currently being scanned and what their metadata is.
- Verify cloud coverage without logging into three different provider consoles. The list cloud integrations tool shows you all connected AWS, Azure, and Google Cloud sources in one place.
- Keep track of compliance over time. Using list scans gives you a verifiable history, letting you prove how often your vulnerability checks run for an audit.
- Simplify user management by listing teams or getting account details. You can verify organizational access controls without calling multiple internal directories.

## How It Works

The bottom line is you get actionable security reports directly into your conversation thread without leaving your primary workflow tool.

1. Tell your agent which security scope you need to audit; this might mean starting with listing all configured cloud integrations.
2. Ask the agent to pull a list of vulnerabilities or scan records. This generates a large dataset that needs filtering and prioritization.
3. Use the detailed results, such as getting a specific issue description, to generate immediate remediation steps for your team.

## Frequently Asked Questions

**How do I find out which assets are included in my security scans using Intruder MCP?**
You list targets to see all infrastructure and application endpoints that the system is currently scanning. This tool gives you a definitive count of your scope.

**What if I need remediation advice for a specific vulnerability found by Intruder MCP?**
Use the get issue tool, passing in the unique ID of the finding. It returns detailed descriptions and actionable steps to fix the flaw immediately.

**Can Intruder MCP check if all my cloud providers are integrated for auditing?**
Yes, you call list cloud integrations. This tool audits your setup across AWS, Azure, and Google Cloud, confirming connectivity status in one place.

**Does Intruder MCP help me track historical scan performance?**
You use the list scans tool to retrieve a record of all past assessments. This lets you prove compliance by showing consistent monitoring over time.

**What does get target do with my asset information in Intruder MCP?**
The get target tool retrieves deep metadata and associated tags for any specific asset, allowing you to verify its exact role or owner within the infrastructure.