falconfeeds-mcp
Verified Safeby Technisanct
Overview
This server provides real-time cybersecurity threat intelligence, including CVEs, IOCs, threat actors, and threat feeds, through the Model Context Protocol to enhance AI-driven threat analysis and reporting.
Installation
npx -y @falconfeeds/mcp@latestEnvironment Variables
- FALCONFEEDS_API_KEY
Security Notes
The server uses `zod` for robust input validation on all tool parameters, which is excellent for preventing injection attacks. API keys are handled securely via environment variables (`FALCONFEEDS_API_KEY`) and explicitly marked as sensitive in the manifest. All external network communication is directed to a specific, trusted API endpoint (FalconFeeds.io) over HTTPS. Error handling for API calls is specific and well-defined using `FalconFeedsApiError`. No 'eval' or other directly dangerous functions are used on untrusted input. The reliance on an external API (FalconFeeds.io) introduces an inherent, albeit managed, third-party dependency risk.
Similar Servers
atomic-red-team-mcp
An MCP server providing tools to search, validate, refresh, and optionally execute Atomic Red Team security tests for threat emulation and security development.
falcon-mcp
An MCP server providing AI agents programmatic access to CrowdStrike Falcon platform capabilities for intelligent security analysis and automation, integrating threat detection, incident response, and vulnerability management into agentic workflows.
Reversecore_MCP
Provides a Micro-Agent Control Protocol (MCP) server that wraps various reverse engineering CLI tools and libraries, enabling AI agents to perform binary analysis, malware analysis, and vulnerability research through natural language commands.
MalwareBazaar_MCP
An AI-driven MCP server interfacing with Malware Bazaar for real-time threat intelligence and sample metadata, supporting cybersecurity research workflows.