mcp-server-wazuh

The Wazuh MCP Server is a Rust-based solution that connects Wazuh Security Information and Event Management (SIEM) systems with applications needing contextual security insights. It transforms complex Wazuh API responses into a format compatible with the Model Context Protocol (MCP), allowing AI assistants to access critical security information effortlessly. Users can inquire about security alerts, agent management, vulnerability assessments, and compliance monitoring through simple questions, receiving structured and actionable data in return. This server is particularly beneficial for compliance teams and security professionals, enabling them to quickly evaluate their security posture, identify monitoring gaps, and validate the effectiveness of security rules. By facilitating natural language queries, the Wazuh MCP Server streamlines the process of obtaining vital security information, thus enhancing operational efficiency and supporting regulatory compliance efforts across various frameworks.

{
  "mcpServers": {
    "mcp-server-wazuh": {
      "command": "npx",
      "args": [
        "-y",
        "@modelcontextprotocol/server-mcp-server-wazuh"
      ]
    }
  }
}