1
Install MCP-Scan
Clone or download the repository from GitHub at https://github.com/invariantlabs-ai/mcp-scan.
2
Run Static Scan
Execute the command `mcp-scan scan` to analyze MCP configurations and connect to MCP servers.
3
Enable Real-Time Auditing
Use `mcp-scan proxy` to audit MCP traffic in real time for prompt injections and unauthorized tool changes.
4
Review Scan Results
Examine detected vulnerabilities such as prompt injections, tool poisoning, and toxic flows.
5
Apply Guardrails and Tool Pinning
Implement guardrail policies and tool hashing to enforce security based on scan findings.