mcp-server-thehive
Verified Safeby gbrigandi
Overview
Provides AI models and automation tools with programmatic access to TheHive incident response platform for security operations and case management.
Installation
./target/release/mcp-server-thehiveEnvironment Variables
- THEHIVE_URL
- THEHIVE_API_TOKEN
- VERIFY_SSL
- RUST_LOG
Security Notes
The server uses environment variables for sensitive API tokens (`THEHIVE_API_TOKEN`), which is good practice. It communicates with TheHive via HTTP(S) requests. A notable security concern is the default `VERIFY_SSL=false` setting for API connections; this should be explicitly set to `true` in production environments to prevent Man-in-the-Middle attacks. There are no `eval` or similar dynamic code execution functions from untrusted input. Test files contain a hardcoded `test_token`, but this is isolated to the testing environment.
Similar Servers
falcon-mcp
The Falcon MCP (Model Context Protocol) server acts as a middleware, connecting AI agents with the CrowdStrike Falcon cybersecurity platform to enable intelligent security analysis and automation in agentic workflows.
Reversecore_MCP
Reversecore_MCP is an AI-powered platform for automated binary analysis, malware analysis, vulnerability research, and game/firmware security, enabling AI agents to interact with advanced reverse engineering tools and generate comprehensive intelligence reports.
mcp-zap-server
Exposes OWASP ZAP security scanning functionalities as Model Context Protocol (MCP) tools, enabling AI agents to orchestrate security assessments and report generation.
mcp-optimizer
Acts as an intelligent intermediary MCP server, providing semantic tool discovery, caching, and unified access to multiple MCP servers for AI clients.