mcp_subfinder_server
MCP server wrapping ProjectDiscovery's subfinder for passive subdomain enumeration via JSON-RPC.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for mcp_subfinder_server, derived from its capabilities.
These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.
Overview
A focused MCP server that wraps ProjectDiscovery's subfinder to expose passive subdomain enumeration through the MCP JSON-RPC interface. Agents can discover subdomains for a target domain using subfinder's passive OSINT sources. As a recon primitive it has a scope-control surface and returns externally sourced data.
Key features
- subfinder passive subdomain discovery
- JSON-RPC MCP interface
- Passive OSINT sources only
Use cases
- Enumerate subdomains during recon
- Feed discovered hosts into a scanning pipeline