Connects to Blackpoint Cyber's CompassOne MDR platform to query security detections, manage endpoints, and track vulnerabilities across your infrastructure. Uses a decision tree navigation pattern where you pick a domain (tenants, assets, detections, vulnerabilities), then get access to domain-specific operations like listing endpoint inventory, pulling detection telemetry, or checking dark web exposure scans. Built for partner-tier access with proper tenant scoping, which matters if you're managing multiple customer environments. Supports both stdio and gateway mode with per-request authentication via HTTP headers. Currently covers the core read operations; write operations like asset isolation or ticket management are mapped in the SDK but not yet wired up in the MCP layer.
claude mcp add --transport stdio wyre-technology-blackpoint-mcp uvx blackpoint-mcp