Rapid7 InsightVM MCP. Query Assets & Validate Vulnerabilities Instantly
Rapid7 InsightVM MCP connects your AI client directly to a major vulnerability assessment platform. It lets you query detailed asset inventories, check for specific vulnerabilities (like CVEs), track historical scan results, and even force immediate scans on network sites—all from one chat window or IDE. You get real-time security intelligence without having to jump between multiple dashboards.
Claude 
ChatGPT 
Cursor 
Gemini 
Windsurf 
VS Code 
JetBrains 
Vercel Give Claude and any AI agent real-world access
You can retrieve full details for every tracked computing asset, including its operating system and hardware type.
The MCP lists all known vulnerabilities found on a single machine, providing associated advisories and fixes.
You can view assessment scans chronologically to track their execution status and results without switching windows.
It lets you explore configured network sites, checking their scope and overall risk level.
You can trigger an immediate re-evaluation scan on a specific site to validate security fixes.
Ask an AI about this
Waiting for input…
What AI agents can do with Rapid7 InsightVM: 10 Tools for Security Auditing
These tools let you perform deep security audits by querying asset details, listing vulnerability definitions, tracking scan status, and forcing new network assessments.
Make your AI actually useful.
Add this MCP to Claude, Cursor, or Windsurf and your AI stops guessing. It gets real tools to look things up, take action, and handle the stuff you keep doing by hand.
Start using Rapid7 InsightVM MCPGet Asset
Retrieves specific, detailed information for a single asset you identify.
Get Asset Vulnerabilities
Lists every vulnerability found on one particular machine or host.
Get Scan
Retrieves the execution status and results for a specific assessment scan run.
Get Site
Retrieves all details about one designated network site.
Get Vulnerability
Gets detailed information for a specific vulnerability ID number.
List Assets
Shows you an inventory list of all computing assets that have been discovered and tracked.
List Scans
Lists assessment scans in chronological order so you can see their history.
List Sites
Shows all the network sites that are configured for scanning.
List Vulnerabilities
Provides a list of global vulnerability definitions used by the system.
Trigger Scan
Forces an immediate, new vulnerability scan to run for any specified site.
Security and governance baked right in.
Pick your AI client below to get set up. Just create a Vinkius account, subscribe, and you're instantly up and running. We handle the entire backend infrastructure, delivering out-of-the-box support for HTTPS Streamable, SSE, and OAuth2—zero messy routing required.
Claude AI
Open Claude Settings
Go to claude.ai, click your profile icon, then navigate to Customize → Connectors.
Add Custom Connector
Click the "+" button and select Add custom connector. Paste your Vinkius endpoint URL:
https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp
Replace [YOUR_TOKEN_HERE] with your token
from cloud.vinkius.com. For OAuth-protected servers, expand
Advanced settings to add credentials.
Start a conversation
Open a new chat. The Rapid7 InsightVM integration is available immediately — no restart needed.
Choose How to Get Started
Build a custom MCP for your own tools, or connect a ready-made integration from our catalog.
Build Your Own
Turn any API into an MCP. Import a spec, define Agent Skills, or deploy with MCPFusion.
- Import from OpenAPI, Swagger, or YAML specs
- Create Agent Skills with progressive disclosure
- Deploy to edge with MCPFusion framework
- Built in DLP, auth, and compliance on each call
- Real time usage dashboard and cost metering
- Publish to catalog or keep private
Make Your AI Do More
Start with Rapid7 InsightVM, then connect any of our 5,200+ other servers whenever your AI needs more. One click, no limits.
- Use this MCP plus 5,200+ others, all in one place
- Add new capabilities to your AI anytime you want
- Connections are secured and governed automatically
- Track usage and costs across all your servers
- Works with Claude, ChatGPT, Cursor, and more
- New servers added to the catalog weekly
Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Rapid7 InsightVM. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.
VINKIUS CLOUD
Cloud Hosted
Managed infra
V8 Isolated
Sandboxed per request
Zero-Trust Proxy
No stored credentials
DLP Enforced
Policy on each call
GDPR Compliant
EU data residency
Token Compression
~60% cost reduction
Dealing with Security Dashboards Is Exhausting
Today, checking your network's security posture means jumping through hoops: logging into the main console to see a high-level risk score, opening a secondary tab to pull up asset inventory details, then clicking yet another section just to get vulnerability reports for specific CVE IDs. It’s tedious copy-pasting and context switching that slows down incident response.
With this MCP, you ditch the dashboard fatigue. You talk to your agent like you're talking to a teammate who actually knows the system. You simply ask: 'What are the critical vulnerabilities on asset 1052?' and get the direct answer and remediation details right where you're working.
Rapid7 InsightVM MCP: Security Data, Delivered.
Manual processes used to require running `list_assets` to build a list, then using that ID to check the vulnerability status with `get_asset_vulnerabilities`, and finally calling `trigger_scan` if anything needed fixing. This is slow, error-prone work.
Now you just tell your agent what you need—'Scan this subnet for critical vulnerabilities.' Your agent handles the entire sequence of checks in the background, giving you a single, consolidated report without any manual orchestration.
What Rapid7 InsightVM MCP does for your AI
This MCP makes your AI client a full cybersecurity assistant that operates directly within the Rapid7 InsightVM platform. Instead of logging into separate consoles, you ask questions about your network assets and get answers instantly. For instance, you can ask what vulnerabilities are active on a specific machine or check if a patch deployment worked by triggering an immediate scan.
The tool's first function allows you to retrieve complete inventory lists, telling you everything about every piece of hardware and software running in your environment. You can also review detailed vulnerability reports, seeing which CVE numbers apply and how to fix them. If you need to manage sites, you can view all configured network locations or initiate a fresh assessment on a subnet after making changes.
Since Vinkius hosts this MCP, your agent gets access to this entire suite of security tools through one single connection point.
019d75fc-a3a2-7166-b411-45f93d027691 
How to set up Rapid7 InsightVM MCP
The bottom line is that you get deep security visibility without leaving the application you’re already working in.
First, you authorize this MCP within your preferred environment. You'll need to provide the URL and port for your Rapid7 Security Console, plus dedicated credentials configured for Basic Authentication.
Next, you chat with your AI agent and ask a question about your domain servers or network status. Your agent sends an API call through this connection.
Finally, the MCP processes the request using InsightVM's data and returns a concise, actionable report directly to you in your workspace.
Who uses Rapid7 InsightVM MCP
This MCP is for security professionals who spend too much time manually switching between dashboards to correlate asset data with vulnerability findings. It's perfect for the SOC analyst who needs immediate threat intelligence or the SysAdmin who has to verify a patch deployment across multiple subnets.
Analyzing identified security flaws and fetching CVE details plus remediation steps without leaving their incident response platform.
Quickly ordering a vulnerability assessment on a subnet after applying OS updates to confirm the threat is successfully patched.
Evaluating site configurations directly when setting up new subnets to ensure full scanning coverage.
Benefits of connecting Rapid7 InsightVM MCP
Stop switching between tabs to check security status. Using the list_assets command, your agent builds a complete picture of every machine you own in one go.
Need to know what's wrong with a specific host? Use get_asset_vulnerabilities. This instantly shows all associated CVE numbers and tells you exactly how to patch them up.
Don't trust old reports. If you patched something, use the trigger_scan command. It forces InsightVM to re-evaluate that site right now, giving you proof of resolution.
Tracking security changes is easier than ever. You can use list_scans and get_scan to see a clear timeline of every assessment run against your environment.
When setting up new subnets, the MCP lets you explore configured network sites using list_sites and check their full scope coverage before it's too late.
Rapid7 InsightVM MCP use cases
Post-Patch Verification
A DevOps engineer applies a critical OS update across three subnets. Instead of waiting for the next scheduled scan, they ask their agent to run trigger_scan on those specific sites immediately. The agent confirms the new assessment is running and reports back when it's ready.
Incident Response Triage
The SOC analyst spots a suspicious IP address in an alert. They use get_asset to quickly pull up all asset data for that IP, confirming its hardware type and OS fingerprint without leaving the incident response dashboard.
Quarterly Audit Prep
A network engineer needs a full list of all sites and their current risk profiles. They ask the agent to run list_sites and then use get_site on each one, compiling all necessary data for auditors in minutes.
Understanding Vulnerability Scope
A team lead wants to know if a specific vulnerability (CVE-2023-XXXX) affects any assets. They use list_vulnerabilities first, then query the results against all known assets using get_asset_vulnerabilities.
Rapid7 InsightVM MCP tradeoffs
What to watch out for, and the recommended way to handle each one.
Checking vulnerability status by reading screenshots.
The analyst downloads a PDF report showing 10 vulnerabilities. They then have to manually cross-reference the CVE IDs against an internal spreadsheet to determine which are critical and if they've been patched.
Instead, ask your agent to use get_asset_vulnerabilities for the specific asset in question. The result is a clean, actionable list of vulnerabilities with clear remediation guides.
Manually running scans on every site.
A network team needs to test a new subnet scope change across five different locations. They spend half a day logging into the console and manually initiating five separate scan jobs, hoping nothing fails.
Use list_sites first to verify all target sites are listed, then send one command via your agent calling trigger_scan for all required sites simultaneously.
Assuming asset data is up-to-date.
A sysadmin deploys a new OS patch but forgets to document the change. They rely on old reports, which show the system still running vulnerable software.
Always run get_asset for core details and follow up with trigger_scan immediately after any major infrastructure or software change to validate the fix.
When to use Rapid7 InsightVM MCP
Use this MCP if your primary pain point is correlating real-time, deep technical security data (CVEs, asset OS fingerprints, scan status) with your daily workflow. You need an AI agent that acts like a super-powered console viewer for vulnerability management.
Don't use this if you just need to send messages, manage contacts, or query simple business records. If your task involves anything outside of network security auditing—like managing tickets in a CRM or scheduling meetings—you should look at different categories of MCPs. This tool is purely for deep technical infrastructure assessment.
Frequently asked questions about Rapid7 InsightVM MCP
How does Rapid7 InsightVM MCP get asset data? +
This MCP connects directly to your running Rapid7 InsightVM instance. It retrieves inventory data by using the list_assets tool, giving you real-time visibility into tracked computing resources.
Can I use Rapid7 InsightVM MCP to patch vulnerabilities? +
No, this MCP doesn't apply patches. It helps you identify them. You use get_asset_vulnerabilities to see the CVE details and remediation guidelines so your team knows what needs fixing.
Is Rapid7 InsightVM MCP better than just looking at reports? +
Yes, because you aren't reading a static report. You ask specific questions about assets or sites, and the agent uses tools like get_site to retrieve only the exact information you need.
What if I change my network after using Rapid7 InsightVM MCP? +
You can force a fresh check by using the trigger_scan tool. This command initiates an immediate scan on that site, validating your changes against current threat data.
Does Rapid7 InsightVM MCP show me old scans? +
It does. Use the list_scans and get_scan tools to review assessment history and track the status of previous security runs for compliance purposes.