ContrastAPI

Security + OSINT API with 53 MCP tools, 7 MCP Resources (ATLAS+D3FEND+CWE catalog browsing), and conditional triage Prompt for AI agents: CVE/KEV/CWE lookup, composite risk scoring (CVSS+EPSS+KEV+PoC fusion), CVSS v3.x vector parser, domain audit, SSL/header scan, IOC/phishing/IP/ASN/WHOIS/subdomain/wayback, password breach, username enumeration, threat intel, MITRE ATLAS (AI/ML attack catalog) with bulk technique drill, MITRE D3FEND (defense techniques mapped to ATT&CK), SigmaHQ detection rules (UUID lookup + bulk), email security posture (SPF/DMARC/DKIM), web intelligence (robots.txt parser, redirect-chain walker, email validation, brand-asset scraper, SEO audit).

Skills

• CVE Lookup
  Look up CVE details with CVSS, EPSS, KEV, patch info
  securitycvevulnerability
• CVE Search
  Search CVEs by vendor, product, keyword
  securitycve
• Leading CVEs
  Top trending/high-severity CVEs
  securitycve
• Bulk CVE Lookup
  Batch CVE details
  securitycve
• Exploit Lookup
  Public exploits for a CVE
  securityexploit
• KEV Detail
  CISA KEV record: federal patch deadline, required action, ransomware association, CWE list
  securitycvekevcisa
• CWE Lookup
  MITRE CWE catalog: description, mitigations, parent/child weakness chain, CVE count
  securitycweweakness
• Domain Audit
  Full-stack domain security audit
  osintdomain
• Domain Report
  Summary report for a domain
  osintdomain
• Subdomain Enumeration
  Enumerate subdomains via crt.sh
  osintdomain
• DNS Lookup
  DNS records (A, AAAA, MX, TXT, NS)
  osintdns
• WHOIS Lookup
  Domain registration info
  osintwhois
• SSL/TLS Check
  Certificate validation + grading (A-F)
  securityssl
• Security Headers
  HTTP security header validation with value checks
  securityheaders
• Scan Headers
  Bulk header scan
  securityheaders
• Tech Fingerprint
  Detect CMS, frameworks, servers, JS libraries
  osintfingerprint
• Injection Check
  Basic SQLi/XSS reflection test
  securityinjection
• Secret Leakage Check
  Scan for exposed secrets in responses
  securitysecrets
• Dependency Check
  Vulnerable JS library detection
  securitydependencies
• IOC Lookup
  Indicator of compromise check (IP, domain, hash)
  threat-intelioc
• Bulk IOC Lookup
  Batch IOC check
  threat-intelioc
• IP Lookup
  IP geolocation, ASN, reputation
  osintip
• ASN Lookup
  Autonomous system info
  osintasn
• Hash Lookup
  File hash reputation (MD5/SHA1/SHA256)
  threat-intelhash
• Threat Intel
  Multi-source threat lookup
  threat-intel
• Threat Report
  Consolidated threat report
  threat-intel
• Phishing Check
  Phishing URL detection
  securityphishing
• Password Breach
  HIBP password breach check (k-anonymity)
  securitypassword
• Disposable Email
  Detect disposable / temp email domains
  osintemail
• Email MX
  Email domain MX record validation
  osintemail
• Phone Lookup
  Phone carrier, region, country
  osintphone
• Username Lookup
  Cross-platform username enumeration
  osintusername
• Wayback Lookup
  Internet Archive snapshots for a URL
  osintwayback
• ATLAS Technique Lookup
  MITRE ATLAS (AI/ML attack catalog) technique lookup by id (AML.T####). Returns tactics, maturity, ATT&CK bridge, pivot hints
  securityai-mlatlasmitre
• ATLAS Technique Search
  Search the MITRE ATLAS AI/ML attack catalog by keyword, tactic, or maturity
  securityai-mlatlasmitre
• Bulk ATLAS Technique Lookup
  Drill into up to 50 MITRE ATLAS technique ids in a single call — natural follow-up to atlas_case_study_lookup's techniques_used array
  securityai-mlatlasmitrebulk
• ATLAS Case Study Lookup
  MITRE ATLAS real-world AI/ML attack incident case study (AML.CS####)
  securityai-mlatlasincident
• ATLAS Case Study Search
  Search ATLAS case studies by keyword or by referenced ATLAS technique
  securityai-mlatlasincident
• D3FEND Defense Lookup
  MITRE D3FEND defense technique lookup by slug (e.g. TokenBinding). Returns tactic, artifact, mapped ATT&CK T-codes
  securityd3fenddefensemitre
• D3FEND Defense Search
  Search D3FEND defenses by keyword, tactic (Harden/Detect/Isolate/...), or targeted artifact
  securityd3fenddefensemitre
• D3FEND Reverse Lookup
  Given an ATT&CK T-code, return all D3FEND defenses that mitigate it. Bridges offensive intel (CVE/ATLAS/ATT&CK) to defensive playbook
  securityd3fenddefensemitreattack
• D3FEND Coverage Audit
  Batch defense coverage breakdown across multiple ATT&CK T-codes — count defenses per tactic + identify undefended techniques
  securityd3fenddefensemitreaudit
• Contrast Triage (Prompt)
  v1.23.0 conditional MCP Prompt: pick a tool chain by perspective ('red' = offensive recon, 'blue' = defensive triage) for an auto-detected target (CVE / ATLAS / ATT&CK / CWE / hash / IP / domain).
  securityprompttriageworkflow
• ATLAS Catalog (MCP Resources)
  v1.23.0 MCP Resources: browse the full MITRE ATLAS catalog (167 techniques + 57 case studies) without spending a tool slot. URIs: atlas://catalog, atlas://technique/{id}, atlas://case-study/{id}.
  securityai-mlatlasmitreresource
• D3FEND Catalog (MCP Resources)
  v1.23.0 MCP Resources: browse the full MITRE D3FEND defense catalog (149 defenses). URIs: d3fend://catalog, d3fend://defense/{id}.
  securityd3fenddefensemitreresource
• CWE Catalog (MCP Resources)
  v1.23.0 MCP Resources: browse the full MITRE CWE catalog (944 weaknesses). URIs: cwe://catalog (slim), cwe://weakness/{id} (full record).
  securitycwemitreresource
• Robots.txt Parser
  v1.25.0 Fetch + parse a target domain's robots.txt — sitemaps, per-User-agent allow/disallow, crawl-delay, Host directive (RFC 9309). Use BEFORE crawling/scraping a target site to honour its published rules.
  osintweb-intelrobotscrawler
• Redirect Chain Walker
  v1.25.0 Walk a URL's HTTP redirect chain hop-by-hop, returning per-hop status, Location, latency. SSRF-guarded at every hop. Use to deobfuscate URL shorteners, audit suspicious phishing links, trace marketing tracking redirects.
  osintweb-intelredirectphishing
• Email Verify (Combined)
  v1.25.0 One-call email validation combining syntax + MX records + disposable check + role-address detection (admin@/info@/noreply@) + free-provider classification (gmail/outlook/yahoo). Replaces 2-3 tool calls. NO SMTP RCPT TO probing — ethical floor declared.
  osintemailvalidationlead-gen
• Brand Assets Scraper
  v1.25.0 Scrape a domain's homepage <head> for public brand assets — favicon, og:image, theme-color, og:site_name, JSON-LD Organization.logo. Enriches CRM records / company-card UIs without manual screenshots. Honours robots.txt, Cache-Control, per-target throttle.
  osintweb-intelbrandingcrm
• SEO Audit (One-Page)
  v1.25.0 One-shot SEO audit of a domain's homepage with a 0-100 composite score (10 rules) + missing_signals list of concrete fixes. Use BEFORE pitching SEO work, when triaging a lead's marketing maturity, or as a structured pre-flight before deeper Lighthouse / SEMrush audits. Honours robots.txt.
  seoweb-intelauditmarketing

How to call

https://api.contrastcyber.com