ToolOracle/doraoracle
DORA Threat Intelligence — 15 MCP tools for CVE, CISA KEV, CERT-Bund, MITRE, HIBP
Platform-specific configuration:
{
"mcpServers": {
"doraoracle": {
"command": "npx",
"args": [
"-y",
"doraoracle"
]
}
}
}Add the config above to .claude/settings.json under the mcpServers key.
DORA Compliance MCP Server — 15 tools | Part of ToolOracle
# Claude Desktop / Cursor / Windsurf
npx -y mcp-remote https://tooloracle.io/dora/mcp/// claude_desktop_config.json
{
"mcpServers": {
"doraoracle": {
"command": "npx",
"args": ["-y", "mcp-remote", "https://tooloracle.io/dora/mcp/"]
}
}
}| Tool | Description | |------|-------------| | cve_search | Search CVEs by keyword, vendor or product. Returns CVSS scores, attack vectors, | | cve_latest | Latest critical CVEs — daily DORA ICT risk briefing. Filter by severity and bank | | kev_list | CISA Known Exploited Vulnerabilities — actively exploited CVEs with patch deadli | | kev_check | Check if a specific CVE is in CISA KEV (actively exploited in the wild). Returns | | cert_advisories | CERT-Bund security advisories — authoritative DE source for ICT threats. DORA Ar | | breach_check | HaveIBeenPwned breach database — check domain/company breach exposure. DORA Art. | | threat_actors | Feodo Tracker: live C2 botnet servers (Emotet, QakBot, etc.). Actionable IP bloc | | incident_timeline | Generate DORA-compliant ICT incident reporting timeline with exact deadlines. DO | | mitre_techniques | MITRE ATT&CK techniques for DORA TLPT / TIBER-EU penetration testing. Maps to DO | | tlpt_scenarios | TIBER-EU threat scenarios for DORA resilience testing planning. Banking-specific | | cloud_status | Live status of AWS, GCP, Azure cloud providers. DORA Art. 28 third-party ICT ris | | provider_risk | DORA Art. 28 ICT third-party risk assessment: CVE history, news, GLEIF registrat | | dora_news | EBA/DORA regulatory news for banks. Topics: ge
Loading reviews...