Malware Analysis MCP Server

Provides real-time threat intelligence and malware metadata by integrating with MalwareBazaar and VirusTotal APIs. Users can search for IOCs, analyze local file hashes, and access data transformation tools for defensive security research.

→ SecurityTalent/Malware-Analysis-MCP-server · listed on glama

Install from

Glama

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings

🚨

Secret credentials may flow to a network call

1 flow detected: TG_BOT_TOKEN. We can’t prove the destination matches the brand the credential belongs to.

🚨

Known vulnerabilities in dependencies: 2 critical

Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.

🔐

You'll be asked for 3 credentials: MB_AUTH_KEY, TG_BOT_TOKEN, VT_API_KEY

These are read from process.env at runtime. Make sure you trust where they’ll be sent.

// required environment variables

This server reads these from process.env. You'll be asked to provide them before it can run.

🔐 secretMB_AUTH_KEY— YOUR_ABUSECH_AUTH_KEY

🔐 secretTG_BOT_TOKEN— YOUR_BOT_TOKEN

configTG_CHAT_ID— YOUR_CHAT_ID

🔐 secretVT_API_KEY— YOUR_VT_KEY

// full audit trail

The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.

// improvement guidance — verified publishers only

We have 7 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.

// embed badge in your README

[![M8ven Score](https://m8ven.ai/badge/mcp/securitytalent-malware-analysis-mcp-server-1iwj1a)](https://m8ven.ai/mcp/securitytalent-malware-analysis-mcp-server-1iwj1a)

commit: c7b99fd35da74547122247a09205a4775f5eeff9

code hash: 708ef37e085c3d710335e3bc5cdd8fb3d7e72b2bcd3731ad3d3f45bcabaae27c

verified: 4/11/2026, 2:34:19 PM

view raw JSON →