MCP Threat Intel ORKL
@fr0gger
MCP Threat Intel ORKL について
This is a threat intel MCP server connected to the ORKL API to retrieve threat report and ask for IOCs, Threat Actors and breaches.
基本情報
設定
以下の設定を使って、このサーバーを MCP 対応クライアントに追加してください。
{
"mcpServers": {
"orkl": {
"command": "uv",
"args": [
"--directory",
"/MyMCP/mcptest/orkl",
"run",
"orkl"
]
}
}
}ツール
ツールは検出されませんでした
ツールは README から自動的に抽出されます。メンテナーは ## Tools という見出しの下に記載することで、このタブに反映できます。
概要
What is MCP Threat Intel ORKL?
MCP Threat Intel ORKL is a Model Context Protocol (MCP) server for querying the ORKL API. It provides tools for fetching and analyzing threat reports, threat actors, and sources, and integrates smoothly with MCP-compatible applications.
How to use MCP Threat Intel ORKL?
Edit or create the Claude desktop config file (claude_desktop_config.json) to add the server configuration with the command uv and the arguments --directory /path/to/orkl run orkl. The server is then available in MCP-compatible clients.
Key features of MCP Threat Intel ORKL
- Fetch latest threat reports with titles and IDs
- Retrieve detailed information for a specific threat report
- Fetch a list of known threat actors
- Get detailed information for a specific threat actor
- Fetch a list of sources used in threat intelligence
- Retrieve detailed metadata for a specific source
Use cases of MCP Threat Intel ORKL
- Automate retrieval of recent threat intelligence reports for analysis
- Quickly look up details on a specific threat actor during an investigation
- Enumerate known sources of threat intelligence for research
- Integrate ORKL data into a GenAI assistant for security reporting
FAQ from MCP Threat Intel ORKL
What does MCP Threat Intel ORKL do?
It provides MCP tools to query the ORKL API for threat reports, threat actors, and sources, enabling integration with MCP-compatible applications like Claude.
How do I install MCP Threat Intel ORKL?
Add the provided JSON configuration to your Claude desktop config file, specifying the path to the server directory and using uv to run the orkl command.
What runtime dependencies does MCP Threat Intel ORKL require?
The server is run via uv, which implies Python and the uv package manager are required. The exact Python version is not specified in the README.
Where does the threat intelligence data come from?
All data is fetched from the ORKL API. No local data storage is mentioned.
Does MCP Threat Intel ORKL require authentication?
The README does not mention any authentication requirements for the ORKL API or the MCP server itself.
「開発者ツール」の他のコンテンツ
Grafana MCP server
grafanaMCP server for Grafana
test
prysmaticlabsGo implementation of Ethereum proof of stake
Stakpak Agent CLI
stakpakShip your code, on autopilot. An open source agent that lives on your machines 24/7 and keeps your apps running. 🦀
MCP Unity Editor (Game Engine)
CoderGamesterModel Context Protocol (MCP) plugin to connect with Unity Editor — designed for Cursor, Claude Code, Codex, Windsurf and other IDEs
sentry-mcp
getsentryAn MCP server for interacting with Sentry via LLMs.
コメント