🛡 CyberIQ Security MCP Server

LIVE Powered by CyberIQ — cyberiq.co

MCP Endpoint

SSE: http://mcp.cyberiq.co/sse

Connect any MCP client (Claude Desktop, ChatGPT, Cursor, etc.) to this endpoint.

Test Tools (REST API)

/api/test/lookup/CVE-2024-3400 — CVE lookup with KEV + EPSS
/api/test/lookup/CVE-2024-21887 — Ivanti Connect Secure
/api/test/kev/ransomware — Ransomware KEVs
/api/test/kev/Microsoft — Microsoft KEVs
/api/test/epss/CVE-2024-3400,CVE-2024-21887 — Batch EPSS
/api/test/threat/Volt Typhoon — Threat actor lookup
/api/test/threat/T1190 — ATT&CK technique
/api/test/atlas/technique/AML.T0051 — ATLAS: Prompt Injection
/api/test/atlas/technique/AML.T0054 — ATLAS: LLM Jailbreak
/api/test/atlas/threats — All SAFE-AI threats
/api/test/atlas/tactics — All ATLAS tactics
/api/test/actor/Volt Typhoon — Threat actor lookup
/api/test/actor/Lazarus — Lazarus Group
/api/test/malware/Cobalt Strike — Malware lookup

Available MCP Tools

1. lookup_cve             — Full CVE enrichment (NVD + KEV + EPSS)
2. check_kev_status       — Search CISA KEV catalog
3. get_epss_scores        — Exploit probability scores
4. search_threats         — MITRE ATT&CK + threat actors
5. generate_poam          — POA&M entry generation
6. lookup_atlas_technique — MITRE ATLAS technique + SAFE-AI controls
7. search_atlas_threats   — SAFE-AI threats + NIST 800-53 mappings
8. get_atlas_overview     — ATLAS framework summary
9. lookup_threat_actor    — 187 APT groups with ATT&CK techniques
10. lookup_malware        — 696 malware families

Data Sources

- NIST NVD (National Vulnerability Database)
- CISA KEV (Known Exploited Vulnerabilities)
- FIRST.org EPSS (Exploit Prediction Scoring System)
- MITRE ATT&CK Framework
- MITRE ATLAS (Adversarial Threat Landscape for AI Systems)
- MITRE SAFE-AI Framework (NIST 800-53 control mappings for AI)