Back to Browse
Free
Server data from the Official MCP Registry
MCP server for RocketCyber Managed SOC — incidents, alerts, agents, and customer telemetry.
About
MCP server for RocketCyber Managed SOC — incidents, alerts, agents, and customer telemetry.
Security Report
7.2
Moderate7.2Low RiskRocketCyber MCP server is well-structured with proper authentication, good credential handling, and sensible authorization. It implements both stdio and HTTP transports with optional gateway-mode multi-tenancy. The read-only design and proper credential isolation per request in HTTP mode are commendable. Minor findings relate to broad exception handling and input validation, but these do not materially impact security posture. Supply chain analysis found 1 known vulnerability in dependencies (0 critical, 1 high severity).
7 files analyzed · 5 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
What You'll Need
Set these up before or after installing:
RocketCyber API key for authenticating to the Managed SOC APIRequired
Environment variable: ROCKETCYBER_API_KEY
RocketCyber customer (tenant) identifier
Environment variable: ROCKETCYBER_CUSTOMER_ID
RocketCyber API base URL — override only if using a non-default region
Environment variable: ROCKETCYBER_API_URL
Transport mode for the server. Set to 'stdio' for local CLI use; the image defaults to 'http' for gateway hosting.
Environment variable: MCP_TRANSPORT
Credential source: 'env' reads vars locally, 'gateway' expects header injection from the WYRE MCP Gateway.
Environment variable: AUTH_MODE
Log verbosity: debug, info, warn, error
Environment variable: LOG_LEVEL
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-wyre-technology-rocketcyber-mcp": {
"env": {
"AUTH_MODE": "your-auth-mode-here",
"LOG_LEVEL": "your-log-level-here",
"MCP_TRANSPORT": "your-mcp-transport-here",
"ROCKETCYBER_API_KEY": "your-rocketcyber-api-key-here",
"ROCKETCYBER_API_URL": "your-rocketcyber-api-url-here",
"ROCKETCYBER_CUSTOMER_ID": "your-rocketcyber-customer-id-here"
},
"args": [
"-y",
"rocketcyber-mcp"
],
"command": "npx"
}
}
}Documentation
View on GitHubFrom the project's GitHub README.
rocketcyber-mcp
MCP (Model Context Protocol) server for the RocketCyber Managed SOC platform. Provides read-only access to RocketCyber security data through 10 tools and 3 resources.
Features
- 10 read-only tools covering all RocketCyber API resources
- 3 MCP resources for quick data access
- Dual transport: stdio (default) and HTTP Streamable
- Lazy SDK initialization on first tool call
- Winston logger with all output routed to stderr
- Connection test tool for validating credentials
One-Click Deployment
Installation
npm install
npm run build
Configuration
| Environment Variable | Required | Default | Description |
|---|---|---|---|
ROCKETCYBER_API_KEY | Yes | - | RocketCyber API key |
ROCKETCYBER_REGION | No | us | API region: us or eu |
MCP_TRANSPORT | No | stdio | Transport type: stdio or http |
MCP_HTTP_PORT | No | 8080 | HTTP port (when using http transport) |
MCP_HTTP_HOST | No | 0.0.0.0 | HTTP host (when using http transport) |
LOG_LEVEL | No | info | Log level: error, warn, info, debug |
LOG_FORMAT | No | simple | Log format: json or simple |
Usage
Claude Desktop (stdio)
Add to your Claude Desktop configuration (claude_desktop_config.json):
{
"mcpServers": {
"rocketcyber": {
"command": "node",
"args": ["/path/to/rocketcyber-mcp/dist/entry.js"],
"env": {
"ROCKETCYBER_API_KEY": "your-api-key"
}
}
}
}
HTTP Transport
ROCKETCYBER_API_KEY=your-api-key MCP_TRANSPORT=http npm start
Tools
| Tool | Description |
|---|---|
rocketcyber_test_connection | Test the connection to RocketCyber API |
rocketcyber_get_account | Get account information |
rocketcyber_list_agents | List monitored agents/endpoints |
rocketcyber_list_incidents | List security incidents |
rocketcyber_list_events | List security events |
rocketcyber_get_event_summary | Get event summary/statistics |
rocketcyber_list_firewalls | List firewall devices |
rocketcyber_list_apps | List managed apps |
rocketcyber_get_defender | Get Windows Defender status |
rocketcyber_get_office | Get Office 365 status |
Resources
| URI | Description |
|---|---|
rocketcyber://account | Account information |
rocketcyber://incidents | Security incidents |
rocketcyber://agents | Monitored agents/endpoints |
Development
# Install dependencies
npm install
# Run in development mode
npm run dev
# Build
npm run build
# Start production server
npm start
License
Reviews
No reviews yet
Be the first to review this server!
More Developer Tools MCP Servers
Git
Freeby Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
80.0K
Stars
4
Installs
6.5
Security
No ratings yet
Local
Toleno
Freeby Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
137
Stars
486
Installs
8.0
Security
4.8
Local
mcp-creator-python
Freeby mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.
-
Stars
65
Installs
10.0
Security
4.6
Local