Wazuh MCP Server
BasicWazuh MCP Server integrates Wazuh security data with large language models like Claude. It authenticates via the Wazuh API to fetch alerts, transform them to MCP-compliant JSON, and provides an HTTP endpoint for real-time context.
000
Overview
Wazuh MCP Server integrates Wazuh security data with large language models like Claude. It authenticates via the Wazuh API to fetch alerts, transform them to MCP-compliant JSON, and provides an HTTP endpoint for real-time context.
Installation
1Install the package
npx
Clone the repository, set up a virtual environment, install dependencies, configure environment variables, and run the server.2Add to Claude
Add this configuration to your claude_desktop_config.json:
claude_desktop_config.json
{
"mcpServers": {
"wazuh-mcp-server": {
"command": "npx",
"args": [
"-y",
"Clone the repository, set up a virtual environment, install dependencies, configure environment variables, and run the server."
]
}
}
}3Verify installation
Restart Claude Desktop, then ask:
"What tools do you have available from Wazuh MCP Server?"
Prerequisites
- Node.js 18 or higher
- npm or npx available
- Claude Desktop or Claude API access
Configuration
No configuration required. This server works out of the box.
Usage Examples
List Resources
"What resources are available in Wazuh MCP Server?"
Claude will query available resources and return a list of what you can access.
Get Details
"Show me details about [specific item] in Wazuh MCP Server"
Claude will fetch and display detailed information about the requested item.
Create New
"Create a new [item] in Wazuh MCP Server with [details]"
Claude will use the appropriate tool to create the resource and confirm success.
Works with Wazuh MCP Server
See what tools in your stack can connect to AI.
Run free scan
Need help with MCP integration?
We build custom MCP integrations for B2B companies. From simple connections to complex multi-tool setups.