{"id":"vorota-ai-shodan-mcp","name":"shodan-mcp","af_score":65.8,"security_score":64.5,"reliability_score":27.5,"what_it_does":"shodan-mcp is an MCP (Model Context Protocol) server that exposes Shodan capabilities as 20 callable tools for AI agents. It supports passive reconnaissance and vulnerability intelligence (CVE/CPE) and provides 4 tools that work without a Shodan API key.","best_when":"You need IDE/agent-integrated passive intelligence from Shodan (especially CVE/CPE and pre-indexed device search) with validated inputs and structured outputs.","avoid_when":"You cannot obtain/secure appropriate Shodan API credentials, or you lack authorization/compliance for OSINT research on targets.","last_evaluated":"2026-03-30T15:35:51.604757+00:00","has_mcp":true,"has_api":false,"auth_methods":["SHODAN_API_KEY (environment variable)"],"has_free_tier":true,"known_gotchas":["Some tools require a Shodan API key; agents should handle failures when a key is missing.","API-credit consumption may occur for key-required tools (search/recon), even though operations are passive.","Results depend on Shodan’s indexing freshness; CVE/CPE mappings may be incomplete for newly disclosed products.","In MCP usage via Docker, passing environment variables correctly (SHODAN_API_KEY) is required for key-based tools."],"error_quality":0.0}