$ timeahead.in
/servers/blog/about
/ servers/github/Sift MCP (Docker edition)
github

Sift MCP (Docker edition)

Enables digital forensics investigation by exposing SANS SIFT tools (The Sleuth Kit, Volatility 3, Plaso, etc.) as callable MCP tools, running in a self-contained Docker container with safe, allowlist

github ↗
☆ Watch this server⚡ Compare⚑ Claim listing
50poor
▣ Score BreakdownMCPScore = Σ(raw × weight)
DimensionRawWeighted
Security
35%
100
35.0
Freshness
25%
30
7.5
Adoption
20%
0
0.0
Quality
10%
20
2.0
Trust
10%
50
5.0
Total
49.5
⚿ Capabilities & Risk Explainer
fs readnetworkexecsecrets
◆ Risk level: high· 19 tools · auth: API key
fs read + network + exec + secrets active — can execute code, access credentials, and make external network calls.
Tool nameDescriptionDestructive?
sift_list_evidence✓ no
sift_server_info✓ no
sift_disk_partitions✓ no
sift_image_info✓ no
sift_filesystem_info✓ no
+14 more tools
sift_list_files✓ no
sift_extract_file✓ no
sift_carve_files✓ no
sift_file_type✓ no
sift_hash_file✓ no
sift_volatility✓ no
sift_create_timeline✓ no
sift_export_timeline✓ no
sift_parse_evtx✓ no
sift_exiftool✓ no
sift_strings✓ no
sift_binwalk✓ no
sift_hexdump✓ no
sift_yara_scan✓ no
⚙ Install config
Source-only — no published npm / pypi package detected.
Clone and follow the build instructions in the repo: github.com/FornixII/SiftDockerMCP
📈 Score historylast 2 snapshots
6/10/20266/11/2026 · 2 snapshots
⛁ Raw data
weekly downloads0
github stars0
forks0
open issues0
license✗ missing
readme length0 chars
last updated3d ago
owner of this server? claim your listing to get a verified badgeclaim →
🔔 Score drop alerts
get notified by email when this server's score drops 5+ points
Sift MCP (Docker edition) — MCP Score: 50/100 | MCPScore | Timeahead