ThreatByte-MCP

An intentionally vulnerable case management system designed for security training that provides MCP tools for SOC analyst workflows like case handling and indicator search. It enables users to explore and demonstrate common security weaknesses such as prompt injection, SQL injection, and broken authorization in an MCP-integrated environment.

→ anotherik/ThreatByte-MCP · listed on glama

Install from

Glama

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings

✅

No credential exfiltration, no sensitive file access, no obfuscation

Static analysis found nothing flowing your secrets to unexpected places.

✅

Open source with a license and README

Anyone can audit the code, the license is declared, and the publisher documents what it does.

// full audit trail

The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.

// improvement guidance — verified publishers only

We have 1 concrete improvement we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.

// embed badge in your README

[![M8ven Score](https://m8ven.ai/badge/mcp/anotherik-threatbyte-mcp-6wp43d)](https://m8ven.ai/mcp/anotherik-threatbyte-mcp-6wp43d)

commit: 8b1f27d7ed28ccc8414b8bd982582ddd8879685e

code hash: cc35adedd2e4af23aaf0596fd94c79cacbec106bc8fa046831f1722fe713cfae

verified: 4/11/2026, 3:06:58 PM

view raw JSON →