npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2025 – Pkg Stats / Ryan Hefner

@zibdie/port-scanner-mcp

v1.0.5

Published

MCP server for network port scanning using nmap

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

zibdiezibdie

Keywords

mcpserverportscannernmapnetworksecuritymodel-context-protocol

Readme

Port Scanner MCP Server

An MCP (Model Context Protocol) server that provides network port scanning capabilities using nmap.

This is very useful when chained with other MCP Tools. For example, needing to SSH into all your servers with a specific criteria to run some tests using Claude

Features

  • Port Scanning: Scan specified ports on target hosts with customizable port lists
  • Network Discovery: Discover live hosts on network segments
  • Service Detection: Identify services and versions running on open ports
  • Cross-Platform: Works on Windows, macOS, and Linux
  • JSON Output: All results returned in structured JSON format
  • No Root Required: Uses TCP connect scans that don't require elevated privileges

Example Conversation (with Claude CLI)

> Can you find all ports open on port 22?

⏺ I'll help you scan for hosts with port 22 open. Let me use the port scanner MCP
  tool to check your local network for SSH services.

⏺ port-scanner - network_discovery (MCP)(network: "192.168.1.0/24")
  ⎿  [                                    
       {
         "host": "example.com (192.168.1.1)",
     … +34 lines (ctrl+r to expand)

⏺ Now let me scan these discovered hosts specifically for port 22:

⏺ port-scanner - scan_ports (MCP)(targets:
                                 ["192.168.1.1","192.168.1.2","192.168.1.4","192.168.
                                 1.5","192.168.1.7","192.168.1.8","192.168.1.9"],
                                 ports: [22], service_detection: true)
  ⎿  [                                    
       {
         "host": "example.com (192.168.1.1)",
     … +73 lines (ctrl+r to expand)

⏺ Found 2 hosts with port 22 (SSH) open:

  - 192.168.1.7 - OpenSSH 9.2p1 Debian 2+deb12u5
  - 192.168.1.8 - OpenSSH 9.2p1 Debian 2+deb12u5

Default Ports

The server scans these ports by default if no custom ports are specified:

  • 22 (SSH)
  • 23 (Telnet)
  • 80 (HTTP)
  • 443 (HTTPS)
  • 8080 (HTTP Alternative)
  • 3000 (Development Server)

Tools Available

scan_ports

Scan specified ports on target hosts using nmap.

Parameters:

  • targets (required): Array of IP addresses or hostnames to scan
  • ports (optional): Array of port numbers (defaults to [22, 23, 80, 443, 8080, 3000])
  • scan_type (optional): "tcp", "udp", or "both" (default: "tcp")
  • service_detection (optional): Enable service version detection (default: true)
  • os_detection (optional): Enable OS detection (default: false, not available without root)

network_discovery

Discover live hosts on a network segment.

Parameters:

  • network (required): Network range in CIDR notation (e.g., "192.168.1.0/24")
  • ping_scan (optional): Use ping scan for host discovery (default: true)

service_scan

Perform detailed service enumeration on a specific port.

Parameters:

  • target (required): IP address or hostname to scan
  • port (required): Port number to examine in detail

Installation

Using Claude Code (Recommended)

Install the MCP server directly from npm:

claude mcp add port-scanner npx @zibdie/port-scanner-mcp@latest

Manual Installation

  1. Install the package globally:
npm install -g @zibdie/port-scanner-mcp
  1. Add to your Claude Code configuration manually in your .claude.json:
{
  "mcp": {
    "servers": {
      "port-scanner": {
        "command": "@zibdie/port-scanner-mcp"
      }
    }
  }
}

Prerequisites

All Platforms

  • Node.js (version 24 or higher)
  • nmap installed on the system

Windows

Using Chocolatey (Recommended):

# Install Chocolatey first if you haven't: https://chocolatey.org/install
choco install nmap

Using winget:

winget install Insecure.Nmap

Manual Installation: Download and install from https://nmap.org/download.html

macOS

Using Homebrew (Recommended):

# Install Homebrew first if you haven't: https://brew.sh
brew install nmap

Manual Installation: Download and install from https://nmap.org/download.html

Linux

Ubuntu/Debian (using apt-get):

sudo apt-get update
sudo apt-get install nmap

CentOS/RHEL/Fedora:

# CentOS/RHEL 7 and older
sudo yum install nmap

# CentOS/RHEL 8+ and Fedora
sudo dnf install nmap

Arch Linux:

sudo pacman -S nmap

Usage with Claude Code

After installation, use the /mcp command to see available tools, then invoke them directly:

Scanning Default Ports

Use the scan_ports tool to scan 192.168.1.1 and google.com for default ports

Custom Port Scan

Use scan_ports to scan 192.168.1.100 for ports 21, 22, 80, 443, and 8080 with service detection

Network Discovery

Use network_discovery to find all devices on the 192.168.1.0/24 network

Detailed Service Scan

Use service_scan to analyze port 80 on 192.168.1.100 in detail

API Usage Examples

If using the MCP server programmatically:

Scanning Default Ports

{
  "tool": "scan_ports",
  "arguments": {
    "targets": ["192.168.1.1", "google.com"]
  }
}

Custom Port Scan

{
  "tool": "scan_ports",
  "arguments": {
    "targets": ["192.168.1.100"],
    "ports": [21, 22, 80, 443, 8080],
    "service_detection": true
  }
}

Network Discovery

{
  "tool": "network_discovery",
  "arguments": {
    "network": "192.168.1.0/24"
  }
}

Detailed Service Scan

{
  "tool": "service_scan",
  "arguments": {
    "target": "192.168.1.100",
    "port": 80
  }
}

Troubleshooting

Windows Issues

  • Ensure nmap is in your PATH environment variable
  • On Windows, nmap might require running as Administrator for some scan types
  • If you get "command not found" errors, restart your terminal after installing nmap

Permission Issues

  • The server uses TCP connect scans (-sT) which don't require root/administrator privileges
  • OS detection and UDP scans are disabled as they require elevated privileges
  • If you need advanced scanning features, run Claude Code as administrator/root

Firewall Issues

  • Windows Defender and antivirus software may flag nmap usage
  • Add exceptions for nmap.exe and node.exe if needed
  • Corporate firewalls may block outbound scans

Security Notice

This tool is intended for defensive security purposes only:

  • Network security assessment
  • Network inventory and monitoring
  • Penetration testing with proper authorization
  • Device Discovery

Always ensure you have proper authorization before scanning networks or systems you do not own.

Output Format

All scan results are returned in JSON format with the following structure:

[
  {
    "host": "192.168.1.100",
    "ports": [
      {
        "port": 22,
        "protocol": "tcp",
        "state": "open",
        "service": "ssh",
        "version": "OpenSSH 8.2"
      }
    ],
    "hostInfo": {
      "hostname": "server.local",
      "macAddress": "00:11:22:33:44:55",
      "vendor": "Dell Inc."
    }
  }
]

Contributing

This is an open-source project. Feel free to contribute by:

  • Reporting bugs
  • Suggesting features
  • Submitting pull requests

License

MIT License - see LICENSE file for details.