XTM FAQs

Question 1

What is the Model Context Protocol (MCP)?

Accepted Answer

The Model Context Protocol (MCP) is a framework that facilitates standardized communication and integration between diverse cybersecurity and threat intelligence tools. It enables efficient and consistent data exchange across platforms.

Question 2

Does XTM support other cybersecurity tools besides OpenCTI?

Accepted Answer

Currently, XTM offers a robust MCP server for OpenCTI. The project is designed for extensibility, with plans to introduce more MCP servers for additional tools within the XTM Suite in the future.

Question 3

What is XTM and its primary purpose?

Accepted Answer

XTM provides Model Context Protocol (MCP) server implementations designed to integrate various threat intelligence and cybersecurity tools. Its primary purpose is to enable seamless data exchange, starting with OpenCTI.

Question 4

How does XTM facilitate integration with OpenCTI?

Accepted Answer

XTM integrates with OpenCTI by offering a dedicated MCP server that connects directly to OpenCTI's GraphQL API. This allows for comprehensive data access and efficient exchange of threat intelligence.

Question 5

What are the core technical requirements for running XTM?

Accepted Answer

To run XTM, you need Python 3.10 or higher. You will also need to configure environment variables like `OPENCTI_URL` and `OPENCTI_TOKEN` for specific integrations like the OpenCTI MCP server.

XTM

概要

主な機能

ユースケース