AIBase
EN
Explore
Kibana MCP
K

Kibana MCP

This project is an implementation of a Kibana MCP server that allows AI assistants to interact with Kibana security features, including alert, rule, and exception management, through the Model Context Protocol (MCP).
SecurityMonitoring#Security Alerts#Rule Management#Exception Handling.Python
2.5 points
6.1K
Open Site

Content Details

Alternatives

Installation

Copy the following command to your Client for configuration
Note: Your key is sensitive information, do not share it with anyone.

🚀 Kibana-MCP Server Documentation

This documentation provides a comprehensive guide on installing dependencies, building, publishing, and setting up a development and testing environment for the Kibana-MCP server.

📦 Installation

Use uv to synchronize dependencies:

uv sync

🚀 Build and Publish

Prepare a Release Version

  1. Build the package distribution:

    uv build

    This will create source and wheel distributions in the dist/ directory.

  2. Publish to PyPI:

    uv publish

    Note: You need to configure your PyPI credentials.

💻 Development Environment and Testing

Dependencies

Install development dependencies:

pip install -r requirements-dev.txt

Quick Start Script

Run the quick start script from the project root directory:

./testing/quickstart-test-env.sh

The script (testing/main.py) will perform the following actions:

  1. Check for Docker and Docker Compose.
  2. Parse the testing/docker-compose.yml configuration.
  3. Run docker compose up -d.
  4. Wait for the Elasticsearch and Kibana APIs to start.
  5. Create a custom user (kibana_system_user) and role for internal Kibana use.
  6. Create an index template (mcp_auth_logs_template).
  7. Read testing/sample_rule.json (a detection rule) and send a POST request to http://localhost:5601/api/detection_engine/rules to create the rule.
  8. Write sample data from testing/auth_events.ndjson to the mcp-auth-logs-default index.
  9. Check for detection signals at http://localhost:5601/api/detection_engine/signals/search.
  10. Print the status, URL, credentials, and shutdown command.

Stop the Test Environment

  • Run the shutdown command printed by the script (e.g., docker compose -f testing/docker-compose.yml down). Use the -v flag (down -v) to remove data volumes.

Alternatives

R
Rsdoctor
Rsdoctor is a build analysis tool specifically designed for the Rspack ecosystem, fully compatible with webpack. It provides visual build analysis, multi - dimensional performance diagnosis, and intelligent optimization suggestions to help developers improve build efficiency and engineering quality.
TypeScript
8.6K
5 points
T
Testkube
Testkube is a test orchestration and execution framework for cloud-native applications, providing a unified platform to define, run, and analyze tests. It supports existing testing tools and Kubernetes infrastructure.
Go
5.7K
5 points
N
Netdata
Netdata is an open-source real-time infrastructure monitoring platform that provides second-level metric collection, visualization, machine learning-driven anomaly detection, and automated alerts. It can achieve full-stack monitoring without complex configuration.
Go
10.3K
5 points
U
Uniprof
Uniprof is a tool that simplifies CPU performance analysis. It supports multiple programming languages and runtimes, does not require code modification or additional dependencies, and can perform one-click performance profiling and hotspot analysis through Docker containers or the host mode.
TypeScript
7.4K
4.5 points
A
Aderyn
Aderyn is an open - source Solidity smart contract static analysis tool written in Rust, which helps developers and security researchers discover vulnerabilities in Solidity code. It supports Foundry and Hardhat projects, can generate reports in multiple formats, and provides a VSCode extension.
Rust
11.2K
5 points
M
MCP Scan
MCP-Scan is a security scanning tool for MCP servers, used to detect common security vulnerabilities such as prompt injection, tool poisoning, and cross-domain escalation.
Python
19.1K
5 points
A
Agentic Radar
Agentic Radar is a security scanning tool for analyzing and assessing agentic systems, helping developers, researchers, and security experts understand the workflows of agentic systems and identify potential vulnerabilities.
Python
13.1K
5 points
2
2344
Opik is an open-source LLM evaluation framework that supports tracking, evaluating, and monitoring LLM applications, helping developers build more efficient and cost-effective LLM systems.
TypeScript
18.2K
5 points
N
Notion Api MCP
Certified
A Python-based MCP Server that provides advanced to-do list management and content organization functions through the Notion API, enabling seamless integration between AI models and Notion.
Python
19.4K
4.5 points
G
Gitlab MCP Server
Certified
The GitLab MCP server is a project based on the Model Context Protocol that provides a comprehensive toolset for interacting with GitLab accounts, including code review, merge request management, CI/CD configuration, and other functions.
TypeScript
23.4K
4.3 points
M
Markdownify MCP
Markdownify is a multi-functional file conversion service that supports converting multiple formats such as PDFs, images, audio, and web page content into Markdown format.
TypeScript
31.8K
5 points
D
Duckduckgo MCP Server
Certified
The DuckDuckGo Search MCP Server provides web search and content scraping services for LLMs such as Claude.
Python
66.8K
4.3 points
U
Unity
Certified
UnityMCP is a Unity editor plugin that implements the Model Context Protocol (MCP), providing seamless integration between Unity and AI assistants, including real - time state monitoring, remote command execution, and log functions.
C#
30.2K
5 points
F
Figma Context MCP
Framelink Figma MCP Server is a server that provides access to Figma design data for AI programming tools (such as Cursor). By simplifying the Figma API response, it helps AI more accurately achieve one - click conversion from design to code.
TypeScript
60.1K
4.5 points
M
Minimax MCP Server
The MiniMax Model Context Protocol (MCP) is an official server that supports interaction with powerful text-to-speech, video/image generation APIs, and is suitable for various client tools such as Claude Desktop and Cursor.
Python
44.4K
4.8 points
G
Gmail MCP Server
A Gmail automatic authentication MCP server designed for Claude Desktop, supporting Gmail management through natural language interaction, including complete functions such as sending emails, label management, and batch operations.
TypeScript
21.1K
4.5 points
AIBase
Zhiqi Future, Your AI Solution Think Tank
English简体中文繁體中文にほんご
© 2026AIBase