// SCAN REPORT

Sicry

15 tools. 3 can modify or destroy data without limits.

3 write tools that can modify data. Rate limits recommended.

Last updated:

3 can modify or destroy data
12 read-only
15 tools total

Community server · catalogue entry verified 11/06/2026

How to control Sicry ↓

TOOL MAP

What Sicry exposes to your agents

Read (12) Write / Execute (3) Destructive / Financial (0)

Running more than one server? Check your whole stack →

MOST DANGEROUS TOOLS
High Risk

The most dangerous Sicry tools

Execute · High sicry_crawl This tool actively crawls .onion (dark web) sites, executing a depth-first spider operation and writing extracted data to a SQLite database. Execute · High sicry_renew_identity This tool triggers an external operation that changes the Tor network circuit and exit node, altering the agent's network identity. Write · High sicry_watch_add This tool creates a persistent monitoring job (write/create operation) that repeatedly re-checks Tor hidden services on a schedule.

3 of Sicry's 15 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

POLICY

How to control Sicry

PolicyLayer is an MCP gateway — it sits between your AI agents and Sicry, and nothing reaches the server without passing your rules. These are the rules we recommend:

Rate limit write operations
{
  "sicry_watch_add": {
    "limits": [
      {
        "counter": "sicry_watch_add_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "sicry_analyze_nollm": {
    "limits": [
      {
        "counter": "sicry_analyze_nollm_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register Sicry — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON SICRY →

Free to start. No card required.

FULL CATALOGUE

All 15 Sicry tools

EXECUTE 2 tools
Execute sicry_crawl Spider a .onion site depth-first. Extracts entities, stores in SQLite. Execute sicry_renew_identity Rotate Tor circuit — new exit node, fresh identity.
WRITE 1 tools
Write sicry_watch_add Register a persistent watch/alert job. Re-checks every N hours, alerts on new results.
READ 12 tools
Read sicry_analyze_nollm Analyse dark web content WITHOUT an LLM. Uses keyword extraction + entity regex. Works offline. Read sicry_ask Analyse dark web content with LLM. Returns structured OSINT report. Read sicry_check_engines Ping 12 dark web search engines. Returns status + rolling reliability score. Read sicry_check_tor Verify Tor is running. Call before any dark web operation. Read sicry_extract_keywords Extract top keywords from text using TF-IDF-like scoring. No LLM needed. Read sicry_fetch Fetch any URL through Tor (.onion or clearnet). Returns title, text, links. Read sicry_search Search 12 .onion search engines. Results include BM25 confidence score. Results cached 30 min. Read sicry_to_csv Export results as CSV string. Read sicry_to_stix Export results as STIX 2.1 Bundle JSON for OpenCTI/MISP/Maltego. Read sicry_watch_check Check all due watch jobs now. Returns new/changed result alerts. Read sicry_watch_list List all active watch jobs. Read sicry_crawl_export Export all pages and links for a crawl job as structured dict.
FAQ

Questions about Sicry

How do I prevent bulk modifications through Sicry? +

The Sicry server has 1 write tools including sicry_watch_add. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Sicry.

How many tools does the Sicry MCP server expose? +

15 tools across 2 categories: Read, Write. 12 are read-only. 3 can modify, create, or delete data.

How do I enforce a policy on Sicry? +

Register the Sicry MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Sicry tool call.

Deterministic rules across all 15 Sicry tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON SICRY →

Free to start. No card required.

15 Sicry tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.