About
OpenSearch provides a Model Context Protocol (MCP) server designed to query and analyze Wazuh security logs within an OpenSearch instance. It enables users to search for security alerts with advanced filtering, retrieve detailed information about specific alerts, generate statistics on security events, and visualize alert trends over time. The server supports progress reporting for long-running operations and structured error handling, making it suitable for integration with client applications using the Model Context Protocol.
Key Features
- Search for security alerts with advanced filtering
- Generate statistics on security events
- Visualize alert trends over time
- Progress reporting for long-running operations
- Structured error handling
- 0 GitHub stars
Use Cases
- Security incident investigation and response
- Threat intelligence gathering
- Security event monitoring and analysis