Yes, Proofpoint is free to use.

How do I install Proofpoint?

Proofpoint is a local plugin. Install it using the provided package and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What credentials does Proofpoint need?

Proofpoint requires the following credentials or environment variables: PROOFPOINT_SERVICE_PRINCIPAL, PROOFPOINT_SERVICE_SECRET, PROOFPOINT_BASE_URL, MCP_TRANSPORT, AUTH_MODE, LOG_LEVEL. You can find setup instructions on the server detail page.

What AI apps work with Proofpoint?

Proofpoint uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Proofpoint MCP Server

by Wyre Technology

Developer ToolsUse Caution4.7MCP RegistryLocal

Free

Server data from the Official MCP Registry

MCP server for Proofpoint TAP — threat intelligence, forensics, quarantine, and email security.

About

MCP server for Proofpoint TAP — threat intelligence, forensics, quarantine, and email security.

Security Report

4.7

Use Caution4.7High Risk

A well-structured Proofpoint MCP server with proper authentication and reasonable security practices. The server requires valid API credentials and implements both stdio and HTTP transports with optional gateway-based auth. The main concerns are the high-impact nature of some operations (delete, release, pull messages) and moderate input validation gaps, but these are mitigated by confirmation dialogs and user elicitation patterns. Permissions align with the server's purpose of email security management. Supply chain analysis found 2 known vulnerabilities in dependencies (1 critical, 0 high severity).

6 files analyzed · 9 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

process_spawn

Check that this permission is expected for this type of plugin.

What You'll Need

Set these up before or after installing:

Proofpoint TAP service principal (API user identifier)Optional

Environment variable: PROOFPOINT_SERVICE_PRINCIPAL

Proofpoint TAP service secretRequired

Environment variable: PROOFPOINT_SERVICE_SECRET

Proofpoint TAP API base URL (defaults to https://tap-api-v2.proofpoint.com)Optional

Environment variable: PROOFPOINT_BASE_URL

Transport mode for the server. Set to 'stdio' for local CLI use; the image defaults to 'http' for gateway hosting.Optional

Environment variable: MCP_TRANSPORT

Credential source: 'env' reads vars locally, 'gateway' expects header injection from the WYRE MCP Gateway.Optional

Environment variable: AUTH_MODE

Log verbosity: debug, info, warn, errorOptional

Environment variable: LOG_LEVEL

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-wyre-technology-proofpoint-mcp": {
      "env": {
        "AUTH_MODE": "your-auth-mode-here",
        "LOG_LEVEL": "your-log-level-here",
        "MCP_TRANSPORT": "your-mcp-transport-here",
        "PROOFPOINT_BASE_URL": "your-proofpoint-base-url-here",
        "PROOFPOINT_SERVICE_SECRET": "your-proofpoint-service-secret-here",
        "PROOFPOINT_SERVICE_PRINCIPAL": "your-proofpoint-service-principal-here"
      },
      "args": [
        "-y",
        "@wyre-technology/proofpoint-mcp"
      ],
      "command": "npx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

Proofpoint MCP Server

A Model Context Protocol (MCP) server for Proofpoint TAP and Essentials APIs. Enables AI assistants to investigate threats, trace emails, manage quarantine, access threat intelligence, and perform URL defense operations.

This is a Model Context Protocol (MCP) server that connects Claude (or any MCP-compatible AI) to your Proofpoint environment.

Part of the MSP Claude Plugins ecosystem — a growing suite of AI integrations for the MSP stack. Built by MSPs, for MSPs.

Installation

npm install @wyre-technology/proofpoint-mcp

Configuration

Set the following environment variables:

Variable	Required	Description
`PROOFPOINT_SERVICE_PRINCIPAL`	Yes	Your Proofpoint TAP service principal
`PROOFPOINT_SERVICE_SECRET`	Yes	Your Proofpoint TAP service secret
`PROOFPOINT_BASE_URL`	No	Custom base URL (default: tap-api-v2.proofpoint.com)
`MCP_TRANSPORT`	No	Transport mode: stdio (default) or http

Usage

Running with Claude Desktop

Add to your Claude Desktop claude_desktop_config.json:

{
  "mcpServers": {
    "proofpoint-mcp": {
      "command": "npx",
      "args": ["@wyre-technology/proofpoint-mcp"],
      "env": {
        "PROOFPOINT_SERVICE_PRINCIPAL": "your-proofpoint-service-principal"
        "PROOFPOINT_SERVICE_SECRET": "your-proofpoint-service-secret"
      }
    }
  }
}

Running with Claude Code (CLI)

claude mcp add proofpoint-mcp \
  -e PROOFPOINT_SERVICE_PRINCIPAL=your-value \
  -e PROOFPOINT_SERVICE_SECRET=your-value \
  -- npx -y @wyre-technology/proofpoint-mcp

Docker

docker build -t proofpoint-mcp .
docker run \
  -e PROOFPOINT_SERVICE_PRINCIPAL=your-value \
  -e PROOFPOINT_SERVICE_SECRET=your-value \
  -p 8080:8080 proofpoint-mcp

Available Domains

Dlp

Data loss prevention policies

Events

Security event stream and SIEM export

Forensics

Forensic analysis of threats

People

Very Attacked People (VAP) reporting

Policy

Email policy management

Quarantine

Email quarantine management

Reports

Security reports and summaries

Smart Search

Advanced email search

Tap

Targeted Attack Protection events and campaigns

Threat Intel

Threat intelligence and indicators of compromise

Url Defense

URL rewriting and click defense

Development

# Clone the repository
git clone https://github.com/wyre-technology/proofpoint-mcp.git
cd proofpoint-mcp

# Install dependencies
npm install

# Build
npm run build

# Run tests
npm test

Contributing

Contributions are welcome! Please see CONTRIBUTING.md if present, or open an issue to discuss changes.

License

Licensed under the Apache License, Version 2.0. See LICENSE for details.

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

mcp-creator-python

Free

by mcp-marketplace · Developer Tools

Create, build, and publish Python MCP servers to PyPI — conversationally.

Proofpoint MCP Server

About

Security Report

Findings (9)Action required

Permissions Required

What You'll Need

How to Install

Documentation

Proofpoint MCP Server

Installation

Configuration

Usage

Running with Claude Desktop

Running with Claude Code (CLI)

Docker

Available Domains

Dlp

Events

Forensics

People

Policy

Quarantine

Reports

Smart Search

Tap

Threat Intel

Url Defense

Development

Contributing

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Toleno

mcp-creator-python

MarkItDown

mcp-creator-typescript

FinAgent