mcp-server-thehive

mcp-server-thehive

3.4

If you are the rightful owner of mcp-server-thehive and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.

An MCP server that integrates AI models and automation tools with TheHive incident response platform.

The MCP Server for TheHive serves as a crucial intermediary, connecting Model Context Protocol (MCP) clients, such as AI assistants, with TheHive, a renowned incident response platform. This server facilitates seamless interaction between AI-driven tools and TheHive, enabling the retrieval and analysis of security alerts, access to detailed case information, and the execution of incident response operations. By bridging the gap between AI models and TheHive, the server enhances the efficiency and effectiveness of security operations, allowing for rapid response to potential threats. The server is designed to be robust and flexible, supporting a range of operations from alert retrieval to case creation, and is built with security and scalability in mind. It leverages the power of Rust for performance and safety, ensuring reliable operation in demanding environments.

Features

  • Retrieve and analyze security alerts from TheHive.
  • Access detailed case information for informed decision-making.
  • Promote alerts to cases to streamline incident response.
  • Create new cases in TheHive with customizable parameters.
  • Integrate seamlessly with MCP clients for automated operations.

Tools

  1. get_thehive_alerts

    Retrieve a list of alerts from TheHive.

  2. get_thehive_alert_by_id

    Get detailed information about a specific alert.

  3. get_thehive_cases

    Retrieve a list of cases from TheHive.

  4. get_thehive_case_by_id

    Get detailed information about a specific case.

  5. promote_alert_to_case

    Promote an alert to a case.

  6. create_thehive_case

    Create a new case in TheHive.