gbrigandi/mcp-server-wazuh
by Various
MCP Server for Wazuh SIEM
MCP
gbrigandi/mcp-server-wazuh
Added 1 June 2026
Overview
An MCP server written in Rust that exposes Wazuh SIEM functionality through the Model Context Protocol. It lets AI agents like Claude query security alerts, manage agents, and retrieve compliance data via the Wazuh API.
Best for
Best for
Security teams who want to integrate AI assistant capabilities with their Wazuh SIEM deployment
Use cases
- Query and summarize security alerts from Wazuh
- Manage Wazuh agents (list, add, remove) through natural language
- Retrieve compliance and vulnerability scan results
Notes
An MCP server written in Rust that exposes Wazuh SIEM functionality through the Model Context Protocol. It lets AI agents like Claude query security alerts, manage agents, and retrieve compliance data via the Wazuh API.
210 stars on GitHub. Last updated 2025-12-12. Licensed MIT.
Use cases
- Query and summarize security alerts from Wazuh
- Manage Wazuh agents (list, add, remove) through natural language
- Retrieve compliance and vulnerability scan results
Pros
- 210 stars on GitHub, indicating community adoption and reliability
- Written in Rust for performance and memory safety
- Enables natural language interaction with Wazuh SIEM using MCP clients
Cons
- Requires an existing Wazuh SIEM deployment to function
- Only works with MCP-compatible clients (e.g., Claude)
- May have limited documentation or early stage maturity
Indexed from awesome-mcp-servers-punkpeye and enriched against its public facts.
Pros
- 210 stars on GitHub, indicating community adoption and reliability
- Written in Rust for performance and memory safety
- Enables natural language interaction with Wazuh SIEM using MCP clients
Cons
- Requires an existing Wazuh SIEM deployment to function
- Only works with MCP-compatible clients (e.g., Claude)
- May have limited documentation or early stage maturity
Pairs with
Other entries in the index that connect to this one. Click through to see the chain.