MISP-MCP-SERVER

MISP-MCP-SERVER

0
securitymonitoring

The MISP MCP Server is a dedicated server that integrates with the Malware Information Sharing Platform (MISP) to enhance threat intelligence for Large Language Models. It offers features such as advanced search capabilities, cross-platform threat analysis, and the ability to generate detailed threat intelligence reports.

MISP MCP Server

A Model Context Protocol (MCP) server that integrates with the Malware Information Sharing Platform (MISP) to provide threat intelligence capabilities to Large Language Models.

Features

  • Mac Malware Detection
  • Cross-Platform Threat Intelligence
  • Advanced Search Capabilities
  • IoC Submission
  • Threat Intelligence Reports
  • MISP Statistics

Prerequisites

  • Python 3.10 or higher
  • MISP instance with API access
  • API key with appropriate permissions

Usage

Running as a standalone server

Testing with MCP Inspector

Installing in Claude Desktop

Add the MISP MCP server configuration or use the MCP CLI to install.

Available Tools

get_mac_malware

get_platform_malware

advanced_search

submit_ioc

generate_threat_report

search_misp

get_misp_stats

Available Resources

feeds://recent/{days}