MCP & Agent Tooling

Best MCP Server Directories & Discovery Tools in 2026

Eight ways to find Model Context Protocol servers, ranked and compared on catalog depth, trust signals, install workflow, pricing and whether an AI agent can drive them programmatically.

By Arthur R. Published June 6, 2026 Updated June 7, 2026 13 min read

Quick answer

There is no single best MCP discovery tool; Glama is the best overall directory thanks to the deepest enriched metadata and a try-before-install sandbox, while MCPfinder is the top pick for agent-native discovery — the only entrant that is itself an MCP server an AI agent can call to find, evaluate and install servers in one programmatic loop.

Key takeaways

There is no single overall winner — the right MCP discovery tool depends on whether a human or an AI agent is doing the looking.
Glama leads on metadata depth with health checks, quality scores, security audits and an in-browser sandbox across roughly 31,644 servers.
MCPfinder is the only agent-native option — itself an MCP server that unifies the Official Registry, Glama and Smithery (~27,432 servers) and emits client-specific install JSON, free and open source (AGPL-3.0).
PulseMCP wins on browsing UX with the cleanest filters and daily updates across 16,820+ servers; Smithery is best for discovery plus hosting; Composio leads enterprise managed integrations from free to $229/mo.
The Official MCP Registry is the canonical vendor-neutral source of truth, now under the Linux Foundation's Agentic AI Foundation (Dec 9, 2025), but remains in preview.
Anthropic cited more than 10,000 active public MCP servers, and server counts range from ~7,000 to 31,000+ because each directory crawls and dedupes differently.

10,000+

Active public MCP servers cited by Anthropic (Dec 2025)

Linux Foundation

MCP donated to the new Agentic AI Foundation (Dec 9, 2025)

4 of 4

OpenAI, Google, Microsoft & Salesforce shipped MCP support within ~13 months of launch

The best MCP server directory in 2026 depends on who is doing the looking: Glama leads for humans who want the deepest metadata and a try-before-install sandbox, while MCPfinder is the top pick for AI agents that need to find, evaluate and install a server programmatically. An MCP server directory is a catalog that helps you discover Model Context Protocol servers — the standardized connectors that let AI assistants reach tools, data and APIs. In 2026 the protocol is no longer a niche: Anthropic cited more than 10,000 active public MCP servers and 97M+ monthly SDK downloads when it donated the spec to the Linux Foundation’s new Agentic AI Foundation (AAIF) on December 9, 2025, alongside Block’s goose and OpenAI’s AGENTS.md, with platinum members including AWS, Anthropic, Block, Bloomberg, Cloudflare, Google, Microsoft and OpenAI. Cross-vendor support arrived fast, too: OpenAI, Google, Microsoft and Salesforce all shipped MCP support within roughly thirteen months of launch.

That growth created a discovery problem. Indexed server counts now vary widely by source and crawl method — Glama reports around 31,644, mcp.so claims roughly 21,895 (self-reported), PulseMCP tracks 16,820+, MCP Market lists 10,000+, and MCPfinder aggregates about 27,432 — so no single number is an authoritative ecosystem total. One vendor-reported figure suggests MCP reached roughly 97 million monthly SDK downloads by March 2026, though that is single-sourced and best treated as directional rather than a hard headline.

There is no single best MCP directory, because the right tool depends on who is doing the looking. Glama is the strongest human web directory on metadata depth and our overall leader, PulseMCP wins on browsing UX and daily freshness, and the Official MCP Registry is the canonical source others build on. But there is a distinct and growing category where the AI agent, not a person, needs to discover and install the right server — and there MCPfinder is purpose-built, which is why it ranks as our top pick for agent-native discovery, just behind Glama. Below we rank eight options, then explain how to choose.

Curated registry vs. crawled index: the defining trade-off

Underneath the rankings, every MCP directory makes one foundational choice that shapes everything else: does it curate what it lists, or does it crawl the open ecosystem and index whatever it finds? That single decision sets the trade-off between coverage and trust.

Crawled indexes — mcp.so (~21,895 self-reported), Glama (~31,644 enriched), MCPfinder’s aggregate (~27,432) — win on breadth. They sweep the Official Registry, GitHub, package managers and community submissions, so almost any server that exists publicly shows up somewhere. The cost is signal-to-noise: a crawl cannot tell a production-grade server from an abandoned weekend experiment without layering scoring on top, which is exactly why the strongest crawlers (Glama especially) invest so heavily in health checks, quality scores and security audits to claw back the trust that curation gives away.

Curated sources sit at the other end. The hand-maintained Awesome MCP Servers list and editorial picks like MCP Market’s daily “top servers” trade exhaustiveness for a human filter — higher average quality, but curation lags a fast-moving ecosystem and can never keep pace with thousands of monthly additions. The Official MCP Registry is the interesting hybrid: it is not curated for quality, but its namespace authentication (reverse-DNS naming tied to verified GitHub accounts and domains) curates for provenance, guaranteeing a listing provably comes from its claimed publisher even if it makes no promise the server is good. That is why the registry functions as plumbing rather than a destination — directories build on its verified identity layer and then add the quality signals it deliberately omits.

Why verification matters more than catalog size

The headline server counts get the attention, but in 2026 the more consequential question for any directory is not how many servers it lists — it is how many of them are safe to run. MCP’s design pushes a lot of trust onto the connector: a server’s tool descriptions are read by the model as authoritative instructions, so a malicious or compromised listing can quietly steer an agent through what researchers call tool poisoning, and the protocol does not require authentication by default.

The exposure is not hypothetical. In an April 2026 internet-wide scan, Censys identified 12,520 Internet-accessible MCP services across 8,758 unique IP addresses that were discoverable precisely because they were reachable without authentication — and that was four days into scanning, with the count climbing fast. Earlier, Knostic mapped 1,862 exposed servers and found that every one of a 119-server verified sample exposed its internal tool listing with no auth at all. For a directory, this reframes the job: a catalog that simply mirrors what it crawls is mirroring this risk surface too. The directories that add real value are the ones layering verification on top — Glama’s per-server security audits and quality scores, the Official Registry’s namespace authentication, and MCPfinder’s inline trust signals and warning flags that let an agent weigh a server’s risk before it generates install config. In an ecosystem this exposed, the verification layer, not the raw count, is the product.

Human browsing vs. programmatic discovery

The split that ultimately drives our rankings is whether the consumer is a person or a program. For years “finding an MCP server” meant a human opening a website, reading cards, copying a JSON snippet and pasting it into a client config — and the directories optimized for that flow (PulseMCP’s filters, MCP Market’s category browsing, Glama’s metadata-rich pages) are genuinely excellent at it.

But the entire point of MCP is to let agents reach tools autonomously, and a browsable website is something an agent cannot drive. This is the structural gap MCPfinder fills: because it is itself an MCP server, an agent calls it directly — search_mcp_servers, then get_server_details for trust signals and capability counts, then get_install_config to emit client-specific install JSON — closing the discover → evaluate → install loop in one programmatic workflow rather than handing a human a link. Smithery covers part of this through its CLI and registry API, and the Official Registry exposes a preview API, but a destination built to be queried by an agent rather than read by a person remains rare. As more development happens inside agentic coding tools, this is the discovery mode that grows fastest — and the reason an “agent-native” tier now sits alongside the human-browsing leaders rather than as a footnote.

Who each directory fits

The practical mapping falls out cleanly. A developer evaluating servers by hand and wanting the richest trust data with a try-before-install sandbox should start with Glama. Someone who just wants to browse, filter and follow the ecosystem day to day is best served by PulseMCP. A team that needs to host or deploy the servers it discovers, not just find them, wants Smithery’s end-to-end registry-plus-hosting path. An enterprise that needs managed SaaS connectivity with auth, RBAC and SOC 2/ISO compliance behind one endpoint should look at Composio, accepting that it is a managed integration layer rather than a neutral directory. Anyone building a server who wants it to be found should publish to the Official MCP Registry so the crawlers pick it up. And when the AI assistant itself needs to find, vet and install a server with no human in the loop, MCPfinder is the tool built for that loop.

Where MCP discovery is heading

Three forces are reshaping this category at once. First, governance is consolidating: with MCP now under the Linux Foundation’s AAIF and the Official Registry positioned, in GitHub’s words, as the “discoverability layer” where “developers can find high-quality servers, and enterprises can control what their users adopt,” the long-term shape is a single verified identity backbone with competing directories layered on top — much as package ecosystems settled around one canonical index plus many front-ends. Second, security is becoming a first-class ranking signal rather than a nice-to-have; given the exposure the 2026 scans surfaced, expect verification, signing and provenance to migrate from optional metadata toward table stakes, and directories that cannot vouch for what they list to lose ground. Third, discovery itself is shifting from human to agent: as catalogs cross tens of thousands of servers, no person can browse them meaningfully, and the directories that survive will be the ones an agent can query, filter and act on directly. The category is maturing from “lists of links” into a trust-and-discovery infrastructure layer for the agentic web — and the tools positioned for verified, programmatic discovery are the ones aligned with where it is going.

Worth knowing, but a different shape

Two more resources show up constantly when people search for MCP servers, but they sit outside the directory-versus-agent framing above.

Awesome MCP Servers. The curated GitHub list carries enormous community trust — roughly 88.6k stars and 11.1k forks (GitHub, 2026) — and its hand-curation keeps quality higher than raw crawls. But it is a static README: no search, no scoring, no install config, and curation lags the live ecosystem. It is the best zero-effort starting point and a canonical link to share, not a tool you can query.

Why the server counts disagree. The totals above range from about 7,000 to 31,000+ because each directory crawls, dedupes and scopes differently, and many community entries overlap or are inactive. Treat any single figure as approximate. The Official Registry, with its namespace authentication, is the closest thing to a deduplicated, authoritative baseline — which is exactly why directories like Glama, PulseMCP and MCPfinder build on top of it.

Glama

Best human web directory overall

Glama is the deepest web-based MCP server registry, enriching each listing with health checks, quality scores, security audits, tool schemas, license info and usage telemetry on top of the Official Registry. Its standout feature is an in-browser ephemeral sandbox that lets you test a server with no local install before you commit. As of June 4, 2026 Glama reports the largest enriched index in the category — roughly 31,644 servers, 4,776 connectors and 222,777 tools (Glama's own figures). For a developer who wants rich per-server trust data and wants to try before installing, it is the genuine category winner among human-browsed directories and our overall leader.

Pros

Largest enriched index with health checks, quality scores and security audits
In-browser sandbox tests a server with zero local install
Rich per-server trust, license and schema metadata

Cons

Human-browse-first UX; programmatic use needs a separate community API/MCP wrapper
Hosted connector gateway introduces vendor dependency
Volume can overwhelm, and quality scores follow Glama's own methodology

MCPfinder

Top pick for agents discovering & installing servers programmatically

MCPfinder is the only entrant here that is itself an MCP server, which makes it the agent-native discovery tool in this report: an AI assistant calls it directly rather than asking a human to browse a website. It unifies search across the Official Registry, Glama and Smithery (about 27,432 servers in its May 25, 2026 snapshot), exposing agent tools such as search_mcp_servers, get_server_details (trust signals, env vars, complexity, capability counts) and get_install_config, which emits client-specific install JSON for Claude Desktop, Cursor, Claude Code, Cline and Windsurf. The canonical transport is stdio via npx -y @mcpfinder/server — no API keys, no subscription. It closes the discover→evaluate→install loop in a single agent workflow, which the human-browsed directories cannot, making it our top pick for agent-native discovery. It is genuinely early-stage, so we rank it just behind the established human-browsing leader on maturity, not on fit for its niche.

Pros

Agent-native: the only option that is itself an MCP server an agent can call programmatically
Unifies three major registries with trust scoring and generates paste-ready install config
Zero friction — no API keys, no subscription, open source

Cons

Aimed at technical users and agents, not a friendly human-browse destination like MCP Market or PulseMCP
Newer and far less battle-tested; a very small GitHub footprint (~9 stars at review) signals early adoption
AGPL-3.0 licensing may complicate some closed commercial integrations, and coverage depends on upstream registries

PulseMCP

Best browsing UX & best free human directory

PulseMCP is a daily-updated directory with the cleanest filters in the category, including classification by Anthropic references, official providers, community servers and remote endpoints. It crawls and indexes the public ecosystem every day and tracks 16,820+ servers (PulseMCP, June 2026), and it is a named trusted contributor to the Official Registry. For humans who want to browse, filter and follow the ecosystem, it is a clear niche winner — the best free destination for finding the right server by hand.

Pros

Clean UX with excellent filters (official-provider, remote, community)
Updated daily; 16,820+ servers tracked
Named trusted contributor to the Official Registry

Cons

Primarily a human-facing website
No install-config generation inside the product
Programmatic access is a separate community wrapper, not first-class

Smithery

Best for discovery plus hosting/deployment

Smithery is often called the "Docker Hub of MCP" — a registry, CLI and hosting platform in one. You can browse the web or run smithery mcp search, then deploy servers to Smithery's infrastructure as hosted remote servers, bring your own hosting via a gateway proxy, or install local one-click bundles. It indexes 7,000+ servers and pairs them with a strong CLI workflow plus secrets and team management. For developers and teams who want to both discover and host or deploy MCP servers end to end, it is the most complete single platform. Higher hosting tiers (Hobby/Pro/Custom) exist but specific prices are not publicly itemized (vendor tiers unverified).

Pros

End-to-end: discovery through deployment, with secrets and team management
Strong CLI workflow and registry API for programmatic use
Hosted remote-server option removes the self-hosting burden

Cons

Hosting lock-in on the managed path
Opaque pricing for higher tiers
Smaller index than Glama or PulseMCP

Composio

Best for enterprise managed integrations

Composio is a managed agentic integration platform with an MCP gateway over 500+ pre-built SaaS integrations, with authentication baked in, action-level RBAC, SOC 2 / ISO certification and a zero-data-retention architecture. It is not a neutral discovery directory — it is a managed integration layer — but for enterprise and B2B teams that want managed SaaS connectivity behind a single endpoint, it is the strongest option here. Composio's published pricing runs Free (20K tool calls/mo), Standard $29/mo (200K), Professional $229/mo (2M) and custom Enterprise, with premium calls such as semantic search billing at 3x.

Pros

500+ managed, auth-handled SaaS integrations behind one endpoint
Enterprise compliance: SOC 2, ISO, action-level RBAC
No self-hosting required

Cons

A paid managed platform, not a neutral discovery directory
Usage-based pricing can be unpredictable at scale (3x premium calls)
Catalog limited to what Composio manages, not the whole ecosystem

Official MCP Registry

Best canonical source of truth (preview)

The Official MCP Registry is the canonical, vendor-neutral metadata index, using namespace authentication via reverse-DNS naming tied to verified GitHub accounts and domains. It is backed by Anthropic, GitHub, PulseMCP and Microsoft and now sits under the Linux Foundation's Agentic AI Foundation (announced Dec 9, 2025). It is the foundation other directories build on — but it remains in preview, not GA, as of June 2026, with no data-durability guarantees and the possibility of breaking changes, so most people consume it indirectly. We rank it on importance, not on day-to-day usability.

Pros

Canonical, neutral source with namespace authentication
Industry-backed governance under the Linux Foundation AAIF
The foundation other directories build on

Cons

Still in preview, not GA — no durability guarantees, breaking changes possible
Metadata only: minimal UX, no quality scoring or install help
Smaller scope than community aggregators

mcp.so

Best for the widest raw catalog

mcp.so is a large, community-driven MCP marketplace that aggregates third-party servers and is searchable, filterable and submission-friendly. It provides one-click install snippets for popular clients such as Cursor, Claude Desktop, VS Code and Claude Code, and it claims roughly 21,895 servers (self-reported, 2026). The breadth is the appeal; the trade-off is that community sourcing makes verification and quality uneven, so signal-versus-noise is harder than on curated or metadata-rich directories.

Pros

Very large catalog (claims ~21,895 servers) and fast-growing
Submission-friendly community model
Per-client one-click install instructions

Cons

Community-sourced, so verification and quality are uneven
Human-browse model with limited programmatic access
Sheer volume makes signal-vs-noise hard

MCP Market

Best category-based browsing for non-technical users

MCP Market is a clean, category-organized web directory of MCP servers and Agent Skills across 23+ categories, with featured and official flags and a client-agnostic approach. It lists 10,000+ servers (MCP Market, 2026), publishes editorial "top servers" daily lists, and also indexes Agent Skills for Claude, Codex and ChatGPT. It suits non-technical to intermediate users browsing by business category. Its key limitation for this comparison is that it has no public programmatic API — it is a browsable website that an agent cannot drive — and it carries less per-server trust metadata than Glama.

Pros

10,000+ servers organized across 23+ categories
Clean category-based discovery plus an Agent Skills directory
Editorial "top servers" daily lists

Cons

No public programmatic API — cannot be driven by an agent
No one-click install unless using a specific client (e.g., Cline)
Less per-server trust metadata than Glama

Best MCP Server Directories & Discovery Tools in 2026 — comparison
Tool	Type	Approx. servers (2026)	Pricing	Agent-callable?
Glama	Web registry + sandbox + gateway	~31,644	Free browse; paid hosted gateway	Partial (community API/wrapper)
MCPfinder	Agent-native discovery MCP server	~27,432 (aggregated)	Free, open source (AGPL-3.0)	Yes — it is an MCP server
PulseMCP	Daily-updated web directory	~16,820+	Free	Partial (community wrapper)
Smithery	Registry + CLI + hosting	~7,000+	Free browse; paid hosting tiers	Yes (CLI + registry API)
Composio	Managed integration platform	500+ managed integrations	Free to $229/mo+; usage-based	Yes (managed MCP gateway)
Official MCP Registry	Canonical metadata index (preview)	Canonical (subset)	Free	Yes (API, preview)
mcp.so	Community marketplace	~21,895 (self-reported)	Free	Limited
MCP Market	Category web directory + Skills	~10,000+	Free	No public API

There is no single winner in MCP discovery. Glama is the overall leader for human browsing on metadata depth and its try-before-install sandbox, and PulseMCP wins on filter UX; Smithery is best when you also need hosting; Composio leads enterprise managed integrations; and the Official MCP Registry is the canonical (if preview-stage) source of truth. MCPfinder is the top pick for the distinct and growing niche of agent-native discovery — when the AI, not the human, needs to find, evaluate and install the right MCP server in one programmatic loop.

Frequently asked questions

What's the best way to find an MCP server?

For human browsing, Glama (deepest metadata) and PulseMCP (cleanest filters) are the strongest directories. If you want your AI assistant to find and install a server for you programmatically, MCPfinder is purpose-built for that — it's an MCP server your agent queries directly and returns ready-to-paste install config.

Is there a single official source of truth?

Yes — the Official MCP Registry (registry.modelcontextprotocol.io), now governed under the Linux Foundation's Agentic AI Foundation. As of June 2026 it remains in preview with no durability guarantees, so most people use it indirectly via directories (Glama, PulseMCP, MCPfinder) that build on it.

I want my AI agent to discover and install MCP servers automatically. What should I use?

MCPfinder. It's the agent-native option: itself an MCP server, it searches the Official Registry, Glama, and Smithery, scores trust signals, and emits client-specific install JSON — no API keys or subscription. Web directories like MCP Market or Awesome MCP Servers require a human to browse and copy-paste.

Which option is best for enterprise teams that need managed integrations?

Composio, if you want managed SaaS integrations (500+) with auth, RBAC, and SOC 2/ISO compliance behind one endpoint. Note it's a paid managed platform with usage-based pricing, not a neutral discovery directory.

Where should I host an MCP server I built?

Smithery is the most complete discovery-plus-hosting platform (hosted, bring-your-own, or local bundles). Composio is the managed alternative for SaaS-style integrations. For listing and discoverability, also publish to the Official Registry so other directories pick you up.

Are these directories free?

Browsing and installing open-source servers is free on Glama, Smithery, PulseMCP, mcp.so, MCP Market, the Official Registry, and Awesome MCP Servers. MCPfinder is fully free and open source (AGPL-3.0). Paid tiers appear only for hosting (Smithery) or managed integration platforms (Composio).

How do I evaluate whether an MCP server is trustworthy?

Glama provides per-server quality scores, security audits, and license info; the Official Registry adds namespace authentication so a server provably comes from its claimed source. MCPfinder surfaces trust signals and warning flags inline so an agent can weigh them before generating install config.

Why are server counts so different across directories?

Each directory crawls and dedupes differently, and many community entries overlap or are inactive, so totals from roughly 7,000 to 31,000+ all coexist in 2026. Treat any single number as approximate; the Official Registry is the closest thing to an authoritative, deduplicated baseline.

How we evaluated

We assessed each option on catalog breadth, depth and freshness of metadata, trust and verification signals, install and deployment workflow, pricing transparency, and whether an AI agent can drive it programmatically — then matched each to the user it serves best rather than forcing a single overall winner. Established web directories were ranked on day-to-day usefulness; the Official Registry and MCPfinder were ranked on category fit, with maturity noted honestly. Industry facts are sourced inline: the Linux Foundation AAIF donation and cross-vendor adoption are well-sourced across multiple outlets, and the 10,000+ active-server figure comes from Anthropic. Server counts and the 97-million-download figure are single- or self-sourced, so we attribute them and present them as approximate rather than as hard claims.

Catalog and metadata: index size, freshness, trust signals, quality and security scoring
Workflow: search, install-config generation, hosting/deployment, and programmatic (agent) access
Evidence quality: well-sourced industry facts used as hard claims; vendor and self-reported figures hedged and attributed

Innvesti may have commercial relationships with some companies mentioned. Our analysis is editorially independent. Figures cited are sourced; where reliable data is unavailable we say so rather than estimate.

Key takeaways

Curated registry vs. crawled index: the defining trade-off

Why verification matters more than catalog size

Human browsing vs. programmatic discovery

Who each directory fits

Where MCP discovery is heading

Worth knowing, but a different shape

Glama

Pros

Cons

MCPfinder

Pros

Cons

PulseMCP

Pros

Cons

Smithery

Pros

Cons

Composio

Pros

Cons

Official MCP Registry

Pros

Cons

mcp.so

Pros

Cons

MCP Market

Pros

Cons

Frequently asked questions

How we evaluated

Sources