Splunk_MCP_Server
by rakeshpc
Overview
A web-based interface for managing Splunk indexes with a modern UI.
Installation
python app.pyEnvironment Variables
- SPLUNK_HOST
- SPLUNK_PORT
- SPLUNK_USERNAME
- SPLUNK_PASSWORD
- MCP_USERNAME
- MCP_PASSWORD
- FLASK_SECRET_KEY
Security Notes
CRITICAL: The application explicitly uses `ssl._create_unverified_context()` for connecting to Splunk, which disables SSL certificate validation. This makes the connection highly vulnerable to Man-in-the-Middle attacks, especially in production environments. Additionally, default hardcoded credentials for both the MCP console (mcpadmin/mcpadmin123) and Splunk (admin/changeme) are present in `app.py` if environment variables are not set, posing a significant security risk. The Flask `SECRET_KEY` also has a weak default. Console authentication is a basic username/password comparison without advanced security features.
Similar Servers
redd-archiver
Archiving and providing AI-optimized access to Reddit-like platform data via a PostgreSQL-backed system and a RESTful API.
sec-mcp
This server provides real-time security checks for domains, URLs, and IP addresses against multiple blacklists, designed to be integrated into Python applications, used via CLI, or run as an MCP server to enrich LLM context with threat intelligence.
slack-mcp
A read-only Model Context Protocol (MCP) server for Slack, providing secure, multi-user access to Slack data through a set of API tools.
streamlit_mcp_cortex
This repository provides Streamlit applications designed to serve as a dashboard or management interface for an MCP Cortex system, potentially involving metric visualization and network configuration.