Scans Express.js routes and inventories public versus authenticated endpoints for audits.
Copy the install command and let the AI configure it · recommended for beginners
No copy-paste install info for "express-recon-mcp" yet — see the docs or source repo.
Scan all routes in the current Express.js project, output an endpoint inventory, and mark each route as public or authenticated.
A complete route list with path, method, auth status, and brief notes.
Perform a security audit of this Express app's route surface, identifying all public endpoints and potential risks.
A list of public endpoints and routes that may need additional auth or access control.
Turn the Express.js route scan results into a structured documentation-ready summary, grouped by module and annotated with auth status.
A module-grouped route summary ready for API docs or audit reports.
Run safe bug bounty recon and organize manual testing evidence and plans.
Scan configured MCP servers locally and generate inventory with risk scores.
Scan MCP servers for runtime, static, config, dependency, and compliance risks.
Scan remote MCP servers for protocol, security, and TLS issues.
Scan codebases for secrets, SAST issues, vulnerable dependencies, and IaC risks.
Scan MCP servers for common security risks and assign A-F grades.