ExposureGuard MCP Server Adds Domain Security Scanning to Claude Desktop

A developer has created an MCP server for domain security scanning using Claude Code, enabling Claude Desktop users to check domain security directly. The server wraps the ExposureGuard API and was built with Claude Code's assistance for scaffolding, async polling logic, and tool definition structuring.

Key Details

The server exposes four specific tools:

• scan_domain — Runs 8 security checks: SPF, DMARC, SSL, security headers, DNSSEC, open ports, MX, and HTTPS. Returns an A-F grade in approximately 8 seconds.
• get_grade — Quick cached lookup that doesn't trigger a new scan.
• get_remediation — Returns exact DNS records and server configurations to fix each failing check.
• get_dependencies — Shows third-party scripts and resources loaded by a domain.

Once connected to Claude Desktop, users can ask Claude to "scan example.com for security issues" and it will call the API directly. The developer noted that building this revealed interesting aspects of MCP's verification handshake and how tool descriptions affect when Claude decides to use a tool versus answering from memory.

Installation is via pip install exposureguard-mcp. The ExposureGuard API offers a free tier with 100 API calls per day.

This type of MCP server integration demonstrates how developers can extend Claude Desktop's capabilities with specialized tools, particularly in security domains where automated scanning and remediation guidance can be valuable.