marc-shade/threat-intel-mcp
If you are the rightful owner of threat-intel-mcp and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to dayong@mcphub.com.
The Threat Intelligence MCP Server provides real-time threat intelligence aggregation for the AGI agentic cluster, integrating multiple threat feeds and reputation checking services.
Tools
Functions exposed to the LLM to take actions
get_threat_feeds
List available threat intelligence feeds
fetch_threat_feed
Fetch IOCs from a specific feed
check_ip_reputation
Check IP against threat sources
check_hash_reputation
Check file hash (MD5/SHA1/SHA256)
get_cisa_kev
Get CISA Known Exploited Vulnerabilities
get_dashboard_summary
Aggregated threat data for dashboards
get_recent_iocs
Recent IOCs from ThreatFox
check_network_against_threats
Check network scan results for threats
Prompts
Interactive templates invoked by user choice
No prompts
Resources
Contextual data attached and managed by the client