Wazuh MCP Server (SIEM)
AI-powered SIEM integration for Wazuh with 48 security tools. Natural language queries for alerts, threat hunting, vulnerability assessment, and active response. Air-gapped deployment support.
- Query security alerts in plain English instead of writing Wazuh queries
- Hunt for threats across your environment through conversation
- Check compliance status and vulnerability assessments
Talk to your SIEM — security teams query alerts, hunt threats, and check compliance in plain English instead of writing complex queries.
Security operations teams using Wazuh who want conversational threat hunting and alert investigation.
https://github.com/gensecaihq/Wazuh-MCP-Server
By gensecaihq
How to Get It
Trust Signals Automated Scan
Data & Access
Community Pulse Growing
Discussed on Reddit
- [Release] Wazuh MCP v0.2.0 - Major Update — Reddit · 36 pts
- Please critique my resume for internship (Cybersecurity Student) — Reddit · 35 pts
- Built a Tool to Connect Wazuh with AI Models via MCP — Reddit · 23 pts
7 mentions across 1 sources
Reviewer notes
Automated Scan review. These are observations, not a security certification.
MIT. Supports air-gapped deployment.
How to evaluate tools before deploying →
Data shown here comes from public APIs and automated scanning. Reviewer notes reflect one person's experience. This is not a security certification or legal recommendation. Always evaluate tools according to your own organization's policies.