Connects to RocketCyber's Managed SOC platform with read-only access to security telemetry. You get 10 tools covering incidents, alerts, agents, events, firewalls, and Windows Defender status, plus three MCP resources for quick data queries. The server lazy-loads the SDK on first call and routes all logging to stderr to keep Claude's stdio transport clean. Use it when you need Claude to query security events, triage incidents, or pull endpoint data from RocketCyber without building custom API clients. Ships with both stdio and HTTP transports, though stdio is the default for Claude Desktop integration.
claude mcp add --transport stdio wyre-technology-rocketcyber-mcp uvx rocketcyber-mcp