Is MISP MCP SERVER safe to use?

MISP MCP SERVER has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install MISP MCP SERVER?

MISP MCP SERVER can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with MISP MCP SERVER?

MISP MCP SERVER is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.

Is MISP MCP SERVER actively maintained?

MISP MCP SERVER is not actively maintained — last commit was 417 days ago. It has 11 GitHub stars.

MISP MCP SERVER

Name: MISP MCP SERVER
Author: bornpresident

by bornpresident

A Model Context Protocol (MCP) server that integrates with the MISP (Malware Information Sharing Platform) to provide threat intelligence capabilities to Large Language Models.

11 0 tools GitHub

No known CVEs

No license

Stale

Last commit 417d ago

Works with most clients

Transport: stdio

0 tools

Grade F

Edit this pageView history

AI / ML Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "misp-mcp-server": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/misp-mcp-server)](https://mcppedia.org/s/misp-mcp-server)

Read me

What MISP MCP SERVER does

A Model Context Protocol (MCP) server that integrates with the MISP (Malware Information Sharing Platform) to provide threat intelligence capabilities to Large Language Models.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

25/100across 5 weighted dimensions

How we score →

0255075100

−75

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is MISP MCP SERVER safe to use?: MISP MCP SERVER has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install MISP MCP SERVER?: MISP MCP SERVER can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with MISP MCP SERVER?: MISP MCP SERVER is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is MISP MCP SERVER actively maintained?: MISP MCP SERVER is not actively maintained — last commit was 417 days ago. It has 11 GitHub stars.

Similar servers

Others in ai-ml / security

View all →

Sequential Thinking MCP Server98

Dynamic problem-solving through sequential thought chains

86.5k 1

Memory MCP Server98

Persistent memory using a knowledge graph

86.5k 5

Antigravity Workspace Template96

Workspace template + MCP server for Claude Code, Codex CLI, Cursor & Windsurf. Multi-agent knowledge engine (ag-refresh / ag-ask) that turns any codebase into a queryable AI assistant.

1.2k 2

Ruflo95

🌊 The leading agent orchestration platform for Claude. Deploy intelligent multi-agent swarms, coordinate autonomous workflows, and build conversational AI systems. Features enterprise-grade architecture, distributed swarm intelligence, RAG integration, and native Claude Code / Codex Integration

56.8k 4

MCP Security Weekly

Get CVE alerts and security updates for MISP MCP SERVER and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

AI / ML Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "misp-mcp-server": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/misp-mcp-server)](https://mcppedia.org/s/misp-mcp-server)

Read me

What MISP MCP SERVER does

A Model Context Protocol (MCP) server that integrates with the MISP (Malware Information Sharing Platform) to provide threat intelligence capabilities to Large Language Models.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

MISP MCP Server

A Model Context Protocol (MCP) server that integrates with the MISP (Malware Information Sharing Platform) to provide threat intelligence capabilities to Large Language Models.

Features

Mac Malware Detection: Search for the latest macOS-related malware samples
Cross-Platform Threat Intelligence: Search for threats affecting Windows, macOS, Linux, Android, iOS, and IoT devices
Advanced Search Capabilities: Search by attribute type, tag, threat actor, or TLP classification
IoC Submission: Submit new Indicators of Compromise directly to your MISP instance
Threat Intelligence Reports: Generate comprehensive reports based on MISP data
MISP Statistics: Get insights into your MISP instance's data

Prerequisites

Python 3.10 or higher
MISP instance with API access
API key with appropriate permissions

Installation

Clone this repository:

git clone https://github.com/yourusername/misp-mcp-server.git
cd misp-mcp-server

Create a virtual environment and install dependencies:

python -m venv venv
source venv/bin/activate  # On Windows: venv\Scripts\activate
pip install "mcp[cli]" pymisp

Configuration

Set the following environment variables to connect to your MISP instance:

MISP_URL - URL of your MISP instance (e.g., "https://misp.example.com")
MISP_API_KEY - Your MISP API key
MISP_VERIFY_SSL - Whether to verify SSL certificates (True/False)

Usage

Running as a standalone server

python misp_server.py

Testing with MCP Inspector

mcp dev misp_server.py

Installing in Claude Desktop

Edit your Claude Desktop configuration file:

macOS:

~/Library/Application Support/Claude/claude_desktop_config.json

Windows:

%APPDATA%\Claude\claude_desktop_config.json

Add the MISP MCP server configuration:

{
  "mcpServers": {
    "misp-intelligence": {
      "command": "python",
      "args": ["/path/to/misp_server.py"],
      "env": {
        "MISP_URL": "https://your-misp-instance.com",
        "MISP_API_KEY": "your-api-key-here",
        "MISP_VERIFY_SSL": "True"
      }
    }
  }
}

Alternatively, use the MCP CLI:

mcp install misp_server.py --name "MISP Threat Intelligence" -v MISP_URL=https://your-misp-instance.com -v MISP_API_KEY=your-api-key

Available Tools

get_mac_malware

Get the latest Mac-related malware samples from MISP.

Parameters:

days (default: 30): Number of days to look back
limit (default: 10): Maximum number of results to return

get_platform_malware

Get the latest malware samples for a specific platform from MISP.

Parameters:

platform: Platform to search for (windows, macos, linux, android, ios, iot)
days (default: 30): Number of days to look back
limit (default: 10): Maximum number of results to return

advanced_search

Perform advanced searches in MISP.

Parameters:

query_type: Type of search (attribute_type, tag, threatactor, tlp)
query_value: Value to search for
platform (optional): Platform filter (windows, macos, linux, android, ios, iot)
days (default: 30): Number of days to look back
limit (default: 10): Maximum number of results to return

submit_ioc

Submit a new Indicator of Compromise (IoC) to MISP.

Parameters:

ioc_value: The actual IoC value (e.g., hash, URL, IP)
ioc_type: Type of IoC (e.g., md5, sha256, url, ip-dst, filename)
event_info: Brief description of the event
category (default: "Artifacts dropped"): Category of the attribute
platform (optional): Platform affected (windows, macos, linux, android, ios, iot)
tlp (default: "amber"): Traffic Light Protocol level (white, green, amber, red)
comment (optional): Optional comment for the IoC

generate_threat_report

Generate a comprehensive threat intelligence report based on MISP data.

Parameters:

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

25/100across 5 weighted dimensions

How we score →

0255075100

−75

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is MISP MCP SERVER safe to use?: MISP MCP SERVER has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install MISP MCP SERVER?: MISP MCP SERVER can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with MISP MCP SERVER?: MISP MCP SERVER is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is MISP MCP SERVER actively maintained?: MISP MCP SERVER is not actively maintained — last commit was 417 days ago. It has 11 GitHub stars.

Similar servers

Others in ai-ml / security

View all →

Sequential Thinking MCP Server98

Dynamic problem-solving through sequential thought chains

86.5k 1

Memory MCP Server98

Persistent memory using a knowledge graph

86.5k 5

Antigravity Workspace Template96

Workspace template + MCP server for Claude Code, Codex CLI, Cursor & Windsurf. Multi-agent knowledge engine (ag-refresh / ag-ask) that turns any codebase into a queryable AI assistant.

1.2k 2

Ruflo95

56.8k 4

MCP Security Weekly

Get CVE alerts and security updates for MISP MCP SERVER and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?