MCP server providing access to Atomic Red Team security tests with search, validation, and creation capabilities

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for cyberbuff from gravatar.com cyberbuff

Unverified details

These details have not been verified by PyPI
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: cyberbuff
  • Tags atomic-red-team , mcp
  • Requires: Python >=3.10
Report project as malware

Project description

Atomic Red Team MCP Server

An MCP (Model Context Protocol) server that provides access to Atomic Red Team tests.

Installation

Quick Start with uvx (Recommended)

The easiest way to run the Atomic Red Team MCP server is using uvx:

# Run directly without installation
uvx atomic-red-team-mcp

# Or install globally
uvx install atomic-red-team-mcp
atomic-red-team-mcp

Install from PyPI

# Using pip
pip install atomic-red-team-mcp

# Using uv
uv add atomic-red-team-mcp

# Using pipx
pipx install atomic-red-team-mcp

Using Docker

# Run the pre-built Docker container
docker run --rm -i -e MCP_TRANSPORT=stdio ghcr.io/cyberbuff/atomic-red-team-mcp:latest

Usage

The server provides the following MCP tools:

  • query_atomics - Search atomics by technique ID, name, description, or platform
  • refresh_atomics - Download latest atomics from GitHub
  • create_atomic_test - Get guidance for creating new atomic tests
  • validate_atomic - Validate atomic test YAML
  • get_validation_schema - Get the atomic test schema

And resources:

  • file://documents/{technique_id} - Read atomic test files by technique ID

Integration with Development Tools

Claude Desktop

Add to your Claude Desktop configuration file:

macOS: ~/Library/Application Support/Claude/claude_desktop_config.json Windows: %APPDATA%\Claude\claude_desktop_config.json

Option 1: Using uvx (Recommended)

{
  "mcpServers": {
    "atomic-red-team": {
      "command": "uvx",
      "args": ["atomic-red-team-mcp"]
    }
  }
}

Option 2: Using Docker

{
  "mcpServers": {
    "atomic-red-team": {
      "command": "docker",
      "args": [
        "run", "--rm", "-i",
        "ghcr.io/cyberbuff/atomic-red-team-mcp:latest"
      ]
    }
  }
}

Cursor

Add to your Cursor settings (settings.json):

Option 1: Using uvx (Recommended)

{
  "mcp.servers": {
    "atomic-red-team": {
      "command": "uvx",
      "args": ["atomic-red-team-mcp"]
    }
  }
}

Option 2: Using Docker

{
  "mcp.servers": {
    "atomic-red-team": {
      "command": "docker",
      "args": [
        "run", "--rm", "-i",
        "ghcr.io/cyberbuff/atomic-red-team-mcp:latest"
      ]
    }
  }
}

Cline (VS Code Extension)

Add to your Cline extension settings or .cline_mcp_config.json:

Option 1: Using uvx (Recommended)

{
  "mcpServers": {
    "atomic-red-team": {
      "command": "uvx",
      "args": ["atomic-red-team-mcp"]
    }
  }
}

Option 2: Using Docker

{
  "mcpServers": {
    "atomic-red-team": {
      "command": "docker",
      "args": [
        "run", "--rm", "-i",
        "ghcr.io/cyberbuff/atomic-red-team-mcp:latest"
      ]
    }
  }
}

Zed Editor

Add to your Zed settings (settings.json):

Option 1: Using uvx (Recommended)

{
  "experimental": {
    "mcp": {
      "servers": {
        "atomic-red-team": {
          "command": "uvx",
          "args": ["atomic-red-team-mcp"]
        }
      }
    }
  }
}

Option 2: Using Docker

{
  "experimental": {
    "mcp": {
      "servers": {
        "atomic-red-team": {
          "command": "docker",
          "args": [
            "run", "--rm", "-i",
            "ghcr.io/cyberbuff/atomic-red-team-mcp:latest"
          ]
        }
      }
    }
  }
}

Generic MCP Client

For any MCP client that supports stdio transport:

Using uvx (Recommended)

uvx atomic-red-team-mcp

Using Docker

docker run --rm -i ghcr.io/cyberbuff/atomic-red-team-mcp:latest

Docker

Run the pre-built Docker container:

docker run -d \
  --name atomic-red-team-mcp-server \
  -p 2786:8000 \
  ghcr.io/cyberbuff/atomic-red-team-mcp:latest

The MCP server will be available at: http://localhost:2786/mcp

Docker Compose

Alternatively, use the included docker-compose.yaml:

# Clone the repository
git clone <repository-url>
cd atomic-red-team-mcp

# Start the server
docker-compose up -d

Configuration

Environment variables:

  • MCP_TRANSPORT - Transport protocol (stdio, sse, streamable-http)
  • MCP_HOST - Host address to bind the server (default: 0.0.0.0)
  • MCP_PORT - Port for HTTP transports (default: 8000)
  • GITHUB_URL - GitHub URL for atomics repository (default: https://github.com)
  • GITHUB_USER - GitHub user/org (default: redcanaryco)
  • GITHUB_REPO - Repository name (default: atomic-red-team)

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for cyberbuff from gravatar.com cyberbuff

Unverified details

These details have not been verified by PyPI
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: cyberbuff
  • Tags atomic-red-team , mcp
  • Requires: Python >=3.10

Release history Release notifications | RSS feed

1.3.2

1.3.1

1.2.6

1.2.5

1.2.4

1.2.3

1.2.1

1.2.0

1.1.0

1.0.1

1.0.0

0.1.3

This version

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

atomic_red_team_mcp-0.1.1.tar.gz (11.6 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

atomic_red_team_mcp-0.1.1-py3-none-any.whl (18.6 kB view details)

Uploaded Python 3

File details

Details for the file atomic_red_team_mcp-0.1.1.tar.gz.

File metadata

  • Download URL: atomic_red_team_mcp-0.1.1.tar.gz
  • Upload date:
  • Size: 11.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for atomic_red_team_mcp-0.1.1.tar.gz
Algorithm Hash digest
SHA256 b92b0c019b0bb95763b3bdd71e6a8aee1da0ed158ee9e964c965c6a37f644e88
MD5 9e0fbad8c96a3854d02421a0ae2cef88
BLAKE2b-256 c3f6dd0f0cfd63bfefef00e9e6c1633d76b5091403de799616809befcd0647a8

See more details on using hashes here.

Provenance

The following attestation bundles were made for atomic_red_team_mcp-0.1.1.tar.gz:

Publisher: release.yml on cyberbuff/atomic-red-team-mcp

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file atomic_red_team_mcp-0.1.1-py3-none-any.whl.

File metadata

File hashes

Hashes for atomic_red_team_mcp-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 db0ecb9a7957949cf33270e511b237c01e8ffe91b30fa589a76da10de39106ff
MD5 b93de86167459fe9fdba56134c957d57
BLAKE2b-256 c627354b306c856259715e173e82ab4c53dc3fc8c8120f5fcf75f4d9b082118d

See more details on using hashes here.

Provenance

The following attestation bundles were made for atomic_red_team_mcp-0.1.1-py3-none-any.whl:

Publisher: release.yml on cyberbuff/atomic-red-team-mcp

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page