Retrieve normalized OpenCTI threat intelligence with context for indicators, actors, and reports.
Copy the install command and let the AI configure it · recommended for beginners
No copy-paste install info for "pycti-mcp" yet — see the docs or source repo.
Use pycti-mcp to look up intelligence on IP 8.8.8.8. Return whether it is a known observable, related incidents, linked reports, and a brief risk summary.
A normalized intelligence summary for the IP, including object details, linked context, report references, and risk assessment.
Use pycti-mcp to retrieve background on APT29, including common targets, known techniques, related infrastructure, and referenced reports.
A structured adversary overview that quickly summarizes activity patterns and threat context.
Use pycti-mcp to find the latest reports related to ransomware and extract key indicators, involved organizations, and investigation priorities.
A list of relevant reports with concise highlights to help security analysts assess them quickly.
Query threat intelligence and trace incidents for faster security triage automation.
Analyze PCAPs offline to extract streams, detect threats, and find leaked credentials.
Analyze MCP tool security risks, detect malicious behavior, and provide risk scores.
Production-ready MCP server for query normalization, retrieval, and RAG prompt building.
Analyze AI security, scan vulnerabilities, and monitor code leaks efficiently.
Query, filter, and analyze Cisco security advisories and vulnerability data.