Security-Detections-MCP — MCP Server by MHaggis

by MHaggis · MCP Server · ★ 444

Last updated: · Indexed by AgentSkillsHub · Auto-synced every 8h

About Security-Detections-MCP

Security Detections MCP An MCP (Model Context Protocol) server that lets LLMs query a unified database of Sigma, Splunk ESCU, Elastic, KQL, and Sublime security detection rules. New here? Start with the Setup Guide -- covers macOS, Windows (WSL & native), and Linux step by step. What's New in 3.0 - Autonomous Detection Platform Version 3.0 transforms this MCP into a fully autonomous detection engineering platform. Feed it threat intelligence, and it automatically: Extracts TTPs from threat reports, CISA alerts, or manual input Analyzes coverage gaps against your existing detections Generates detections in your SIEM's native format (SPL, KQL, EQL, or Sigma) Runs Atomic Red Team tests against your lab environment Validates detections fire by querying your SIEM Exports attack data for reproducibility Stages DRAFT PRs to your detection repo (never auto-merges) Multi-SIEM: Set to , , , or in your . The pipeline was built on Splunk + Attack Range but adapts to any SIEM. See the E2E Testing Guide for complete setup instructions per platform. Architecture: LangGraph + Cursor Subagents The 3.0 architecture uses two complementary systems: Core autonomous workflow - portable, testable,

detection-engineeringmcp

Quick Facts

Stars444
Forks66
LanguageTypeScript
CategoryMCP Server
Quality Score75.300814190891/100
Last Updated2026-06-16
Created2026-01-13
Platformsmcp, node
Est. Tokens~26k

Security-Detections-MCP alternative? Top 1 similar tools

Looking for a Security-Detections-MCP alternative? If you're comparing Security-Detections-MCP with other mcp server tools, these 1 projects are the closest alternatives on Agent Skills Hub — ranked by topic overlap, star count, and community traction.

  • agent-beacon by Asymptote-Labs · ⭐ 270

    Agent Beacon is the world's first open-source telemetry layer for AI agents wherever they run: locally, in CI,

More MCP Server Tools

Explore other popular mcp server tools:

View all MCP Server tools →

Popular TypeScript Agent Tools

Frequently Asked Questions

What is Security-Detections-MCP?

Security-Detections-MCP is MCP to help Defenders Detection Engineer Harder and Smarter. It is categorized as a MCP Server with 444 GitHub stars.

What programming language is Security-Detections-MCP written in?

Security-Detections-MCP is primarily written in TypeScript. It covers topics such as detection-engineering, mcp.

How do I install or use Security-Detections-MCP?

You can find installation instructions and usage details in the Security-Detections-MCP GitHub repository at github.com/MHaggis/Security-Detections-MCP. The project has 444 stars and 66 forks, indicating an active community.

What are the best alternatives to Security-Detections-MCP?

The top alternatives to Security-Detections-MCP on Agent Skills Hub include agent-beacon. Each offers a different approach to the same problem space — compare them side-by-side by stars, quality score, and community activity.

View on GitHub → Browse MCP Server tools