stealthmole-mcp 1.0.0

package/README.md

@@ -0,0 +1,89 @@
+# StealthMole MCP
+
+Connect [Claude Desktop](https://claude.ai/download), [Cursor](https://cursor.sh), [Windsurf](https://codeium.com/windsurf), and other MCP clients to the [StealthMole](https://www.stealthmole.com) Threat Intelligence API.
+
+## Quick Start
+
+```json
+{
+  "mcpServers": {
+    "stealthmole": {
+      "command": "npx",
+      "args": ["-y", "stealthmole-mcp"]
+    }
+  }
+}
+```
+
+Add this to your MCP client configuration file:
+
+| Client | Config File |
+|--------|-------------|
+| Claude Desktop (macOS) | `~/Library/Application Support/Claude/claude_desktop_config.json` |
+| Claude Desktop (Windows) | `%APPDATA%\Claude\claude_desktop_config.json` |
+| Cursor | `.cursor/mcp.json` in your project root |
+| Windsurf | `~/.codeium/windsurf/mcp_config.json` |
+
+## How It Works
+
+1. Run `npx stealthmole-mcp` (or your MCP client starts it automatically)
+2. A browser window opens for Keycloak authentication
+3. After login, the OAuth token is cached in `~/.mcp-auth/`
+4. The stdio-to-HTTP bridge connects your MCP client to the remote server
+
+## Requirements
+
+- **Node.js 18+**
+- A StealthMole account with API access
+
+## Available Tools
+
+Once connected, your MCP client will have access to:
+
+- **Dark Web Tracker** - Search dark web content by various indicators
+- **Telegram Tracker** - Search Telegram content for threat intelligence
+- **Credential Lookout** - Search for leaked credentials
+- **Compromised Dataset** - Search compromised data from breaches
+- **Combo Binder** - Search leaked ID/Password combinations
+- **ULP Binder** - Search URL-Login-Password combinations
+- **Ransomware Monitoring** - Track ransomware activities
+- **Government Monitoring** - Monitor government sector threats
+- **Leaked Monitoring** - Monitor enterprise data leaks
+
+## CLI Options
+
+All `mcp-remote` flags are passed through:
+
+```bash
+npx stealthmole-mcp --debug          # Enable debug logging
+npx stealthmole-mcp --port 3335      # Use custom callback port
+```
+
+## Advanced Usage
+
+You can also use `mcp-remote` directly:
+
+```bash
+npx mcp-remote https://mcp.stealthmole.com/mcp \
+  --static-oauth-client-info '{"client_id":"stealthmole_mcp_client","token_endpoint_auth_method":"none","redirect_uris":["http://127.0.0.1"]}'
+```
+
+## Troubleshooting
+
+### Reset authentication
+
+```bash
+rm -rf ~/.mcp-auth/
+```
+
+Then restart your MCP client to re-authenticate.
+
+### Connection issues
+
+1. Ensure Node.js 18+ is installed: `node --version`
+2. Try with debug logging: `npx stealthmole-mcp --debug`
+3. Check that your StealthMole account has API access
+
+## License
+
+MIT

package/bin/cli.mjs

@@ -0,0 +1,20 @@
+#!/usr/bin/env node
+
+const SERVER_URL = "https://mcp.stealthmole.com/mcp";
+const CLIENT_INFO = JSON.stringify({
+  client_id: "stealthmole_mcp_client",
+  token_endpoint_auth_method: "none",
+  redirect_uris: ["http://127.0.0.1"],
+});
+
+// 서버 URL을 argv 첫 번째 인자로 주입
+// mcp-remote의 proxy.js는 argv[2]를 서버 URL로 파싱
+process.argv.splice(2, 0, SERVER_URL);
+
+// 사용자가 직접 --static-oauth-client-info를 지정하지 않은 경우에만 주입
+if (!process.argv.includes("--static-oauth-client-info")) {
+  process.argv.push("--static-oauth-client-info", CLIENT_INFO);
+}
+
+// mcp-remote 프록시 실행
+await import("mcp-remote/dist/proxy.js");

package/package.json

@@ -0,0 +1,23 @@
+{
+  "name": "stealthmole-mcp",
+  "version": "1.0.0",
+  "description": "StealthMole Threat Intelligence MCP client - connect Claude Desktop, Cursor, and other MCP clients to StealthMole API",
+  "bin": {
+    "stealthmole-mcp": "./bin/cli.mjs"
+  },
+  "type": "module",
+  "license": "MIT",
+  "dependencies": {
+    "mcp-remote": "~0.1.38"
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "keywords": [
+    "mcp",
+    "stealthmole",
+    "threat-intelligence",
+    "cybersecurity",
+    "model-context-protocol"
+  ]
+}