# ContrastAPI

> Security + OSINT API with 47 MCP tools, 7 MCP Resources (ATLAS+D3FEND+CWE catalog browsing), and conditional triage Prompt for AI agents. Free tier 100 req/hr, Pro tier 1000 req/hr ($7/mo). v1.25.0 adds 5 web-intelligence tools with explicit ethical-floor guardrails (per-target eTLD+1 throttle, robots.txt respected, no SMTP probing).

## Endpoints
- MCP server: https://api.contrastcyber.com/mcp/
- OpenAPI spec: https://api.contrastcyber.com/openapi.json
- Agent Card (A2A): https://api.contrastcyber.com/.well-known/agent-card.json
- MCP manifest: https://api.contrastcyber.com/.well-known/mcp.json
- Quickstart guide: https://api.contrastcyber.com/quickstart
- Pricing: https://contrastcyber.com/pricing
- Privacy: https://contrastcyber.com/privacy
- Terms: https://contrastcyber.com/terms

## Authentication
- API key via `X-API-Key` header
- Sign up: https://contrastcyber.com/pricing
- Free tier available

## Tool categories
- CVE / Exploit / Vulnerability intelligence (7 tools, incl. CISA KEV detail + MITRE CWE catalog)
- Domain / DNS / WHOIS / Subdomain OSINT (5 tools)
- SSL/TLS / Security headers scan (3 tools)
- Web application surface check (3 tools)
- IOC / Threat intel / Phishing (5 tools)
- IP / ASN / Geolocation / Hash (4 tools)
- Password breach / Username / Email / Phone lookup (6 tools, incl. v1.25.0 email_verify)
- Wayback machine archive (1 tool)
- MITRE ATLAS — AI/ML attack catalog: techniques + case studies + bulk technique drill (5 tools)
- MITRE D3FEND — defense catalog mapped to ATT&CK: lookup + search + reverse-lookup + coverage audit (4 tools)
- Web intelligence (v1.25.0) — robots.txt parser, redirect-chain walker, brand-asset scraper, SEO audit (4 tools, plus email_verify above)

## MCP Resources (catalog browsing, no rate limit)
- atlas://catalog, atlas://technique/{id}, atlas://case-study/{id}
- d3fend://catalog, d3fend://defense/{id}
- cwe://catalog, cwe://weakness/{id}

## MCP Prompts
- contrast_triage(target, perspective='red'|'blue') — conditional triage chain (auto-detects target type: CVE / ATLAS / ATT&CK / CWE / hash / IP / domain)
- security_audit(domain), vulnerability_check(product) — single-target workflows

## Contact
- Operator: ContrastCyber
- Site: https://contrastcyber.com
- GitHub: https://github.com/UPinar/contrastapi
- Contact: contact@contrastcyber.com