mcp-registry/mcp-server-wazuh


    ==================
      
       /// MCP ///
      /// MCP ///
        
    ==================
        
    [server:online]
    [protocol:ready]

mcp-server-wazuh

by gbrigandi

Rust-based Model Context Protocol (MCP) server that exposes Wazuh SIEM data—alerts, vulnerabilities, agent status, etc.—to LLM clients via stdio or optional HTTP.

Specialized

GitHub

Installation

Installation steps were not present in the repository metadata that was provided. Consult the project README for authoritative instructions. A typical Rust-based MCP server is installed with:

1. Prerequisites

• Rust tool-chain (https://rustup.rs)

• A running Wazuh manager (for SIEM integration)

• WAZUH_API_URL, WAZUH_USER and WAZUH_PASSWORD environment variables set with API credentials.

2. Clone and build

   git clone https://github.com/gbrigandi/mcp-server-wazuh.git
   cd mcp-server-wazuh
   cargo build --release

3. Run the server

./target/release/mcp-server-wazuh --config ./config.yml

4. (Optional) install as a systemd service by copying the provided unit file located in `deployment/systemd/` (if present) and running `systemctl enable --now mcp-server-wazuh`.

Documentation

License: MIT License

Updated 7/30/2025

mcp-server-wazuh

Available Tools

Installation

Documentation

Table of Contents

mcp-server-wazuh

Available Tools(14)Click to expand

Available Tools

Installation

Documentation

Table of Contents