Is CrowdSentinels AI free?

Yes, CrowdSentinels AI is free to use.

How do I install CrowdSentinels AI?

CrowdSentinels AI is a local plugin. Install it using PyPI package: crowdsentinel-mcp-server and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What credentials does CrowdSentinels AI need?

CrowdSentinels AI requires the following credentials or environment variables: ELASTICSEARCH_HOSTS, ELASTICSEARCH_CLOUD_ID, ELASTICSEARCH_API_KEY, ELASTICSEARCH_USERNAME, ELASTICSEARCH_PASSWORD, ELASTICSEARCH_BEARER_TOKEN, VERIFY_CERTS, REQUEST_TIMEOUT. You can find setup instructions on the server detail page.

What AI apps work with CrowdSentinels AI?

CrowdSentinels AI uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

CrowdSentinels AI

by Thomasxm

SecurityUse Caution2.8MCP RegistryLocal

Free

Server data from the Official MCP Registry

AI-powered threat hunting and incident response MCP server for Elasticsearch/OpenSearch

About

AI-powered threat hunting and incident response MCP server for Elasticsearch/OpenSearch

What You'll Need

Set these up before or after installing:

Comma-separated Elasticsearch hosts. Supports HTTP/HTTPS, local/remote/cloud (e.g., http://localhost:9200, https://es.prod.example.com:9200)Optional

Environment variable: ELASTICSEARCH_HOSTS

Elastic Cloud deployment ID (alternative to ELASTICSEARCH_HOSTS for cloud deployments)Optional

Environment variable: ELASTICSEARCH_CLOUD_ID

API key for authentication (recommended for production and Elastic Cloud)Required

Environment variable: ELASTICSEARCH_API_KEY

Username for basic authentication (alternative to API key)Optional

Environment variable: ELASTICSEARCH_USERNAME

Password for basic authentication (used with ELASTICSEARCH_USERNAME)Required

Environment variable: ELASTICSEARCH_PASSWORD

Bearer/service token for authentication (alternative to API key)Required

Environment variable: ELASTICSEARCH_BEARER_TOKEN

TLS certificate verification: true (verify CA — production), false (skip — dev/test), or /path/to/ca.crt (custom CA)Optional

Environment variable: VERIFY_CERTS

Request timeout in seconds (e.g., 60 or 10.5)Optional

Environment variable: REQUEST_TIMEOUT

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-thomasxm-crowdsentinel-mcp-server": {
      "env": {
        "VERIFY_CERTS": "your-verify-certs-here",
        "REQUEST_TIMEOUT": "your-request-timeout-here",
        "ELASTICSEARCH_HOSTS": "your-elasticsearch-hosts-here",
        "ELASTICSEARCH_API_KEY": "your-elasticsearch-api-key-here",
        "ELASTICSEARCH_CLOUD_ID": "your-elasticsearch-cloud-id-here",
        "ELASTICSEARCH_PASSWORD": "your-elasticsearch-password-here",
        "ELASTICSEARCH_USERNAME": "your-elasticsearch-username-here",
        "ELASTICSEARCH_BEARER_TOKEN": "your-elasticsearch-bearer-token-here"
      },
      "args": [
        "crowdsentinel-mcp-server"
      ],
      "command": "uvx"
    }
  }
}

Security Report

2.8

Use Caution2.8Critical Risk

CrowdSentinel is a feature-rich security MCP server with extensive threat hunting capabilities but lacks authentication controls and has several security concerns. The server can execute arbitrary commands through subprocess calls, lacks authentication on sensitive operations, and includes hardcoded credentials in configuration examples. Supply chain analysis found 7 known vulnerabilities in dependencies (0 critical, 5 high severity). Package verification found 1 issue.

Scanned 3 files · 14 findings

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

HTTP Network Access

Connects to external APIs or services over the internet.

File System Read

Reads files on your machine. Normal for tools that analyze or process local data.

File System Write

Writes or modifies files on your machine. Check that this is expected for the tool.

env_vars

Check that this permission is expected for this type of plugin.

Shell Command Execution

Runs commands on your machine. Be cautious — only use if you trust this plugin.

database

Check that this permission is expected for this type of plugin.

process_spawn

Check that this permission is expected for this type of plugin.

Reviews

No reviews yet

Be the first to review this server!

CrowdSentinels AI

About

What You'll Need

How to Install

Security Report

Permissions Required

Findings (14)

Reviews

No reviews yet