velociraptor-mcp-server
Verified Safeby Flurin17
Overview
This server acts as an intermediary, exposing Velociraptor's digital forensics and incident response (DFIR) capabilities via the FastMCP protocol to AI agents (e.g., Codex, ChatGPT).
Installation
velociraptor-mcp --config /absolute/path/to/velociraptor_lab/volumes/api/api.config.yaml --log-level INFO --server-name velociraptor-mcpEnvironment Variables
- VELOCIRAPTOR_API_CONFIG
- MCP_LOG_LEVEL
- MCP_SERVER_NAME
Security Notes
The project uses mTLS for API communication, generates unique credentials for the API client, and explicitly sanitizes user-provided strings to prevent VQL injection in most tool functions. Default admin credentials are only for the local lab setup and are intended to be overridden by environment variables. The `query_vql` tool allows arbitrary VQL execution, which is an intentional feature for agents, shifting responsibility for safe VQL to the agent.
Similar Servers
gpt-researcher
The GPT Researcher MCP Server enables AI assistants to conduct comprehensive web research and generate detailed, factual, and unbiased reports. It supports multi-agent workflows, local document analysis, and integration with external tools via the Machine Conversation Protocol (MCP) for various research tasks.
klavis
Develop and deploy AI agents that interact with a wide array of web services (e.g., Gmail, YouTube, LinkedIn, Supabase, Salesforce, Kubernetes) through a standardized Model Context Protocol (MCP), often orchestrated by an intelligent routing layer like Strata.
mcp-server
Provides a Model Context Protocol (MCP) server for AI agents to search and retrieve curated documentation for the Strands Agents framework, facilitating AI coding assistance.
Reversecore_MCP
Provides a Micro-Agent Control Protocol (MCP) server that wraps various reverse engineering CLI tools and libraries, enabling AI agents to perform binary analysis, malware analysis, and vulnerability research through natural language commands.