A Model Context Protocol server that facilitates integration with OpenCTI, allowing users to query and retrieve cyber threat intelligence data via a standardized interface.
Retrieves the most recent threat intelligence reports. Parameters: first (optional, defaults to 10)
Retrieves a specific report by its ID. Parameters: id (required)
Searches for malware information in the OpenCTI database. Parameters: query (string, required), first (optional, defaults to 10)
Searches for indicators of compromise. Parameters: query (string, required), first (optional, defaults to 10)
Searches for threat actor information. Parameters: query (string, required), first (optional, defaults to 10)
Retrieves user information by ID. Parameters: id (required)
Lists all users in the system. Parameters: none
Lists all groups with their members. Parameters: first (optional, defaults to 10)
Lists all attack patterns in the system. Parameters: first (optional, defaults to 10)
Retrieves campaign information by name. Parameters: name (required)
Lists all system connectors. Parameters: none
Lists all status templates. Parameters: none
Retrieves file information by ID. Parameters: id (required)
Lists all files in the system. Parameters: none
Lists all marking definitions. Parameters: none
Lists all available labels. Parameters: none
No reviews yet. Be the first to review!
Sign in to join the conversation
Highlight AIStart the server with node to access it via any client or IDE.
node path/to/downloaded/file.mjs