# 安装 io.github.cyanheads/attack-surface-mcp-server - 类型: MCP 工具 - 说明: 被动梳理目标外部攻击面,汇总子域、DNS、TLS、HTTP与资产情报。 - 仓库: https://github.com/cyanheads/attack-surface-mcp-server ## 方式一 · 一键代装(复制提示词让 AI 代劳) ### Claude Code ``` 请帮我安装 askskill 上的 "io.github.cyanheads/attack-surface-mcp-server" MCP 服务: 执行:claude mcp add io-github-cyanheads-attack-surface-mcp-server -- bun -y @cyanheads/attack-surface-mcp-server ``` ### Codex ``` 请帮我安装 askskill 上的 "io.github.cyanheads/attack-surface-mcp-server" MCP 服务: 在 ~/.codex/config.toml 中添加: [mcp_servers.io-github-cyanheads-attack-surface-mcp-server] command = "bun" args = ["-y","@cyanheads/attack-surface-mcp-server"] 然后重启 Codex 生效 ``` ### Cursor ``` 请帮我安装 askskill 上的 "io.github.cyanheads/attack-surface-mcp-server" MCP 服务: 在 .cursor/mcp.json 的 "mcpServers" 中添加: "io-github-cyanheads-attack-surface-mcp-server": { "command": "bun", "args": ["-y","@cyanheads/attack-surface-mcp-server"] } 然后在 Cursor 设置 > MCP 中启用 ``` ## 方式二 · 命令行安装(原生命令与配置) ### Claude Code ```bash claude mcp add --env SHODAN_API_KEY=YOUR_VALUE --env CERTSPOTTER_API_KEY=YOUR_VALUE --env ATTACKSURFACE_DEFAULT_RESOLVERS=YOUR_VALUE --env ATTACKSURFACE_HTTP_USER_AGENT=YOUR_VALUE --env ATTACKSURFACE_MAX_SUBDOMAINS=YOUR_VALUE --env ATTACKSURFACE_RDAP_BOOTSTRAP_URL=YOUR_VALUE --env ATTACKSURFACE_ALLOW_PRIVATE_TARGETS=YOUR_VALUE --env MCP_LOG_LEVEL=YOUR_VALUE --transport stdio io-github-cyanheads-attack-surface-mcp-server -- bun -y @cyanheads/attack-surface-mcp-server ``` 需要环境变量:SHODAN_API_KEY, CERTSPOTTER_API_KEY, ATTACKSURFACE_DEFAULT_RESOLVERS, ATTACKSURFACE_HTTP_USER_AGENT, ATTACKSURFACE_MAX_SUBDOMAINS, ATTACKSURFACE_RDAP_BOOTSTRAP_URL, ATTACKSURFACE_ALLOW_PRIVATE_TARGETS, MCP_LOG_LEVEL ### Codex ```bash codex mcp add --env SHODAN_API_KEY=YOUR_VALUE --env CERTSPOTTER_API_KEY=YOUR_VALUE --env ATTACKSURFACE_DEFAULT_RESOLVERS=YOUR_VALUE --env ATTACKSURFACE_HTTP_USER_AGENT=YOUR_VALUE --env ATTACKSURFACE_MAX_SUBDOMAINS=YOUR_VALUE --env ATTACKSURFACE_RDAP_BOOTSTRAP_URL=YOUR_VALUE --env ATTACKSURFACE_ALLOW_PRIVATE_TARGETS=YOUR_VALUE --env MCP_LOG_LEVEL=YOUR_VALUE io-github-cyanheads-attack-surface-mcp-server -- bun -y @cyanheads/attack-surface-mcp-server ``` 配置文件 ~/.codex/config.toml: ```toml [mcp_servers.io-github-cyanheads-attack-surface-mcp-server] command = "bun" args = ["-y","@cyanheads/attack-surface-mcp-server"] [mcp_servers.io-github-cyanheads-attack-surface-mcp-server.env] SHODAN_API_KEY = "YOUR_VALUE" CERTSPOTTER_API_KEY = "YOUR_VALUE" ATTACKSURFACE_DEFAULT_RESOLVERS = "YOUR_VALUE" ATTACKSURFACE_HTTP_USER_AGENT = "YOUR_VALUE" ATTACKSURFACE_MAX_SUBDOMAINS = "YOUR_VALUE" ATTACKSURFACE_RDAP_BOOTSTRAP_URL = "YOUR_VALUE" ATTACKSURFACE_ALLOW_PRIVATE_TARGETS = "YOUR_VALUE" MCP_LOG_LEVEL = "YOUR_VALUE" ``` 需要环境变量:SHODAN_API_KEY, CERTSPOTTER_API_KEY, ATTACKSURFACE_DEFAULT_RESOLVERS, ATTACKSURFACE_HTTP_USER_AGENT, ATTACKSURFACE_MAX_SUBDOMAINS, ATTACKSURFACE_RDAP_BOOTSTRAP_URL, ATTACKSURFACE_ALLOW_PRIVATE_TARGETS, MCP_LOG_LEVEL ### Cursor 配置文件 .cursor/mcp.json: ```json { "mcpServers": { "io-github-cyanheads-attack-surface-mcp-server": { "command": "bun", "args": [ "-y", "@cyanheads/attack-surface-mcp-server" ], "env": { "SHODAN_API_KEY": "YOUR_VALUE", "CERTSPOTTER_API_KEY": "YOUR_VALUE", "ATTACKSURFACE_DEFAULT_RESOLVERS": "YOUR_VALUE", "ATTACKSURFACE_HTTP_USER_AGENT": "YOUR_VALUE", "ATTACKSURFACE_MAX_SUBDOMAINS": "YOUR_VALUE", "ATTACKSURFACE_RDAP_BOOTSTRAP_URL": "YOUR_VALUE", "ATTACKSURFACE_ALLOW_PRIVATE_TARGETS": "YOUR_VALUE", "MCP_LOG_LEVEL": "YOUR_VALUE" } } } } ``` 一键安装:cursor://anysphere.cursor-deeplink/mcp/install?name=io-github-cyanheads-attack-surface-mcp-server&config=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 需要环境变量:SHODAN_API_KEY, CERTSPOTTER_API_KEY, ATTACKSURFACE_DEFAULT_RESOLVERS, ATTACKSURFACE_HTTP_USER_AGENT, ATTACKSURFACE_MAX_SUBDOMAINS, ATTACKSURFACE_RDAP_BOOTSTRAP_URL, ATTACKSURFACE_ALLOW_PRIVATE_TARGETS, MCP_LOG_LEVEL