MCP server providing access to Atomic Red Team security tests with search, validation, and creation capabilities

These details have been verified by PyPI

Project links

GitHub Statistics

Maintainers

cyberbuff

These details have not been verified by PyPI

Project description

Atomic Red Team MCP Server

An MCP (Model Context Protocol) server that provides access to Atomic Red Team tests.

Available Tools and Resources

The server provides the following MCP tools:

query_atomics - Search atomics by technique ID, name, description, or platform
refresh_atomics - Download latest atomics from GitHub
validate_atomic - Validate atomic test YAML
get_validation_schema - Get the atomic test schema

And resources:

file://documents/{technique_id} - Read atomic test files by technique ID

Usage Examples

"Search mshta atomics for windows"
"Show me all the atomic tests for T1059.002"
"Find all the applescript atomics for macOS"
"Validate this atomic test YAML "

Installation

The Atomic Red Team MCP server can be installed in various development tools and AI assistants. Choose your platform below for detailed installation instructions:

Quick Start

Recommended: Using uvx

uvx atomic-red-team-mcp

Using Docker

docker run --rm -i ghcr.io/cyberbuff/atomic-red-team-mcp:latest

Platform-Specific Guides

Claude Desktop & Claude Code - Installation guide for Anthropic's Claude Desktop app and Claude Code CLI
Cursor - Installation guide for Cursor IDE
Windsurf - Installation guide for Windsurf editor
Google AI Studio / Gemini - Installation guide for Google's AI tools
Other Tools - Cline, Zed, Docker, Docker Compose, and generic MCP clients

Installation Methods

Each platform supports multiple installation methods:

uvx (Recommended) - Easiest setup, automatic updates
Docker - Isolated environment, consistent across systems
Remote Server ⚠️ - Hosted on Railway (free tier, may have limits)

Configuration

Environment variables:

MCP_TRANSPORT - Transport protocol (stdio, sse, streamable-http)
MCP_HOST - Host address to bind the server (default: 0.0.0.0)
MCP_PORT - Port for HTTP transports (default: 8000)
GITHUB_URL - GitHub URL for atomics repository (default: https://github.com)
GITHUB_USER - GitHub user/org (default: redcanaryco)
GITHUB_REPO - Repository name (default: atomic-red-team)

Project details

These details have been verified by PyPI

Project links

GitHub Statistics

Maintainers

cyberbuff

These details have not been verified by PyPI

Release history Release notifications | RSS feed

1.3.2

Apr 8, 2026

1.3.1

Apr 8, 2026

1.2.6

Nov 3, 2025

1.2.5

Oct 23, 2025

1.2.4

Oct 22, 2025

1.2.3

Oct 21, 2025

1.2.1

Oct 10, 2025

1.2.0

Oct 10, 2025

1.1.0

Oct 6, 2025

This version

1.0.1

Oct 5, 2025

1.0.0

Oct 4, 2025

0.1.3

Oct 4, 2025

0.1.1

Oct 4, 2025

0.1.0

Aug 17, 2025

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

atomic_red_team_mcp-1.0.1.tar.gz (11.4 kB view details)

Uploaded Oct 5, 2025 Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

The dropdown lists show the available interpreters, ABIs, and platforms. Enable javascript to be able to filter the list of wheel files.

atomic_red_team_mcp-1.0.1-py3-none-any.whl (17.9 kB view details)

Uploaded Oct 5, 2025 Python 3

File details

Details for the file atomic_red_team_mcp-1.0.1.tar.gz.

File metadata

Download URL: atomic_red_team_mcp-1.0.1.tar.gz
Upload date: Oct 5, 2025
Size: 11.4 kB
Tags: Source
Uploaded using Trusted Publishing? Yes
Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for atomic_red_team_mcp-1.0.1.tar.gz
Algorithm	Hash digest
SHA256	`3ae65682bc21b47991fd6521d49d9cfe9f290a14174e0ab8f8692acbfcfb04c9`
MD5	`fff5e3dc98f15e85df54d6adf7b70091`
BLAKE2b-256	`4a6aff50c7e87dffc726e4e3b457312bab81a581e06b5191504762d8cecfc1bc`

See more details on using hashes here.

Provenance

The following attestation bundles were made for atomic_red_team_mcp-1.0.1.tar.gz:

Publisher: release.yml on cyberbuff/atomic-red-team-mcp

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Statement:
- Statement type: https://in-toto.io/Statement/v1
- Predicate type: https://docs.pypi.org/attestations/publish/v1
- Subject name: atomic_red_team_mcp-1.0.1.tar.gz
- Subject digest: 3ae65682bc21b47991fd6521d49d9cfe9f290a14174e0ab8f8692acbfcfb04c9
- Sigstore transparency entry: 584047136
- Sigstore integration time: Oct 5, 2025
Source repository:
- Permalink: cyberbuff/atomic-red-team-mcp@4c2bc5e39830eb70d5bcf22799edd867038b0892
- Branch / Tag: refs/tags/v1.0.1
- Owner: https://github.com/cyberbuff
- Access: public
Publication detail:
- Token Issuer: https://token.actions.githubusercontent.com
- Runner Environment: github-hosted
- Publication workflow: release.yml@4c2bc5e39830eb70d5bcf22799edd867038b0892
- Trigger Event: push

File details

Details for the file atomic_red_team_mcp-1.0.1-py3-none-any.whl.

File metadata

Download URL: atomic_red_team_mcp-1.0.1-py3-none-any.whl
Upload date: Oct 5, 2025
Size: 17.9 kB
Tags: Python 3
Uploaded using Trusted Publishing? Yes
Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for atomic_red_team_mcp-1.0.1-py3-none-any.whl
Algorithm	Hash digest
SHA256	`9683ec864f09c70ad7e8a55acaab5516e724a15b9f190b2f52153b5f8e06ec87`
MD5	`df6be761a9cbf19cee38bade1ed5f96b`
BLAKE2b-256	`be1771e6ea97b99f46031c6be5e3410c49c013c779b0ee1c2ac489e55c5c80e7`

See more details on using hashes here.

Provenance

The following attestation bundles were made for atomic_red_team_mcp-1.0.1-py3-none-any.whl:

Publisher: release.yml on cyberbuff/atomic-red-team-mcp

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Statement:
- Statement type: https://in-toto.io/Statement/v1
- Predicate type: https://docs.pypi.org/attestations/publish/v1
- Subject name: atomic_red_team_mcp-1.0.1-py3-none-any.whl
- Subject digest: 9683ec864f09c70ad7e8a55acaab5516e724a15b9f190b2f52153b5f8e06ec87
- Sigstore transparency entry: 584047139
- Sigstore integration time: Oct 5, 2025
Source repository:
- Permalink: cyberbuff/atomic-red-team-mcp@4c2bc5e39830eb70d5bcf22799edd867038b0892
- Branch / Tag: refs/tags/v1.0.1
- Owner: https://github.com/cyberbuff
- Access: public
Publication detail:
- Token Issuer: https://token.actions.githubusercontent.com
- Runner Environment: github-hosted
- Publication workflow: release.yml@4c2bc5e39830eb70d5bcf22799edd867038b0892
- Trigger Event: push

atomic-red-team-mcp 1.0.1

Navigation

Verified details

Project links

GitHub Statistics

Maintainers

Unverified details

Meta

Project description

Atomic Red Team MCP Server

Available Tools and Resources

Usage Examples

Installation

Quick Start

Platform-Specific Guides

Installation Methods

Configuration

Project details

Verified details

Project links

GitHub Statistics

Maintainers

Unverified details

Meta

Release history Release notifications | RSS feed

Download files

Source Distribution

Built Distribution

File details

File metadata

File hashes

Provenance

File details

File metadata

File hashes

Provenance