# cybershield MCP server

CyberShield - 12 cybersecurity tools: NIS2 mapping, MITRE ATT&CK, vulns, threat intel.

## Links
- Registry page: https://www.getdrio.com/mcp/io-tooloracle-cybershield
- Repository: https://github.com/ToolOracle/cybershield

## Install
- Endpoint: https://tooloracle.io/cybershield/mcp/
- Auth: Not captured

## Setup notes
- Remote endpoint: https://tooloracle.io/cybershield/mcp/

## Tools
- threat_landscape - Current cyber threat landscape overview per ENISA categories. Top 8 threats with sector relevance and mitigations. Endpoint: https://tooloracle.io/cybershield/mcp/
- cve_risk_score - CVE risk prioritization combining CVSS, EPSS, KEV catalog, exploit availability. Returns weighted priority score with patching SLA. Endpoint: https://tooloracle.io/cybershield/mcp/
- attack_surface_check - Attack surface assessment checklist. Web apps, remote access, cloud, IoT, email. Prioritized security checks. Endpoint: https://tooloracle.io/cybershield/mcp/
- phishing_indicators - Analyze email/URL for phishing indicators. Scores sender, urgency, attachments, URL patterns. Returns verdict and recommended actions. Endpoint: https://tooloracle.io/cybershield/mcp/
- nis2_compliance - NIS2 Directive (EU 2022/2555) compliance assessment. All 10 Art. 21 measures, entity classification, penalties, incident reporting. Endpoint: https://tooloracle.io/cybershield/mcp/
- nis2_incident_report - NIS2 incident notification template. 24h early warning, 72h notification, 1-month final report templates. Endpoint: https://tooloracle.io/cybershield/mcp/
- iso27001_gap - ISO 27001:2022 Annex A gap analysis. All 93 controls across 4 themes, new 2022 controls highlighted, certification process. Endpoint: https://tooloracle.io/cybershield/mcp/
- dora_ict_risk - DORA Art. 5-12 ICT risk management compliance check. 8 articles assessed with specific requirements per article. Endpoint: https://tooloracle.io/cybershield/mcp/
- password_policy - Generate password policy per NIST SP 800-63B (2024) and BSI recommendations. Modern best practices — no forced rotation. Endpoint: https://tooloracle.io/cybershield/mcp/
- incident_playbook - Incident response playbook for ransomware, data breach, phishing compromise. Phase-by-phase actions with legal obligations. Endpoint: https://tooloracle.io/cybershield/mcp/
- risk_matrix - Risk assessment matrix (likelihood × impact). ISO 31000/27005 methodology. Provide risks for assessment or get template. Endpoint: https://tooloracle.io/cybershield/mcp/
- security_metrics - Security KPI/metrics dashboard template. MTTD, MTTR, patch compliance, phishing rate. Board-ready reporting guidance. Endpoint: https://tooloracle.io/cybershield/mcp/

## Resources
Not captured

## Prompts
Not captured

## Metadata
- Owner: io.tooloracle
- Version: 1.0.0
- Runtime: Streamable Http
- Transports: HTTP
- License: Not captured
- Language: Not captured
- Stars: Not captured
- Updated: May 7, 2026
- Source: https://registry.modelcontextprotocol.io