Spaces:

Agents-MCP-Hackathon
/

ExposureGPT

Sleeping

App Files Files Community

ExposureGPT / README.md

ACloudCenter

Update README.md

506b89f verified 5 months ago

preview code

raw

history blame contribute delete

3.42 kB

A newer version of the Gradio SDK is available: 5.49.1

Upgrade

metadata

title: ExposureGPT
emoji: 🎯
colorFrom: blue
colorTo: purple
sdk: gradio
sdk_version: 5.33.2
app_file: app.py
pinned: false
license: mit
short_description: Simplified OSINT Intelligence Platform with MCP Support
tags:
  - mcp-server-track
  - Agents-MCP-Hackathon
  - model-context-protocol
  - OSINT
  - cyber security
  - ai-agents
  - hacking
  - intelligence
  - huggingface

ExposureGPT - Simplified OSINT Intelligence

Single MCP tool for comprehensive security intelligence using Shodan + OpenAI

Features

Single Tool: One comprehensive OSINT intelligence gathering function
Shodan Integration: Real infrastructure and device discovery
AI Analysis: GPT-4o-mini powered security insights
MCP Server: Built-in Model Context Protocol server for AI assistants
Risk Assessment: Automated security scoring and recommendations
Simple Interface: Single input, comprehensive output

Configuration

Required: Set these environment variables in your Space settings:

SHODAN_API_KEY - Your Shodan API key (get from https://shodan.io)
OPENAI_API_KEY - Your OpenAI API key (get from https://openai.com)

MCP Integration

This Space automatically serves as an MCP server that AI assistants like Claude can use!

MCP Endpoint: https://acloudcenter-exposuregpt.hf.space/gradio_api/mcp/sse

Claude Desktop Configuration:

{
  "mcpServers": {
    "exposuregpt": {
      "command": "npx",
      "args": ["mcp-remote", "https://acloudcenter-exposuregpt.hf.space/gradio_api/mcp/sse"]
    }
  }
}

Available Tool

intelligence_gathering(target: str)

Comprehensive OSINT analysis for any domain, IP address, or organization
Uses Shodan for infrastructure discovery and vulnerability detection
AI-powered analysis with actionable security recommendations
Returns detailed security report with risk assessment

Usage Examples

Web Interface

Domain: google.com - Analyze domain infrastructure
IP Address: 8.8.8.8 - Scan specific IP for services
Organization: Microsoft Corp - Corporate intelligence gathering

Via AI Assistant (Claude)

"Analyze the security posture of example.com"
"What are the security risks for tesla.com?"
"Perform OSINT analysis on 1.1.1.1"

Security & Ethics

This tool is designed for:

Security awareness and education
Authorized penetration testing
Risk assessment for your own organization
Academic research

Not for:

Unauthorized reconnaissance
Malicious activities
Privacy violations

How It Works

Input Analysis: Automatically detects if target is domain, IP, or organization
Shodan Query: Searches for exposed infrastructure and services
Risk Assessment: Analyzes vulnerabilities and calculates risk scores
AI Analysis: GPT-4o-mini generates security insights and recommendations
Comprehensive Report: Formatted intelligence report with actionable findings

Perfect for security researchers, penetration testers, and AI assistants needing OSINT capabilities.

Built for the 2025 Gradio Agents & MCP Hackathon