CrowdStrike Falcon

Official

Connect with the CrowdStrike Falcon platform for intelligent security analysis, providing programmat...

1 views

0 installs

Updated Oct 3, 2025

Not audited

Connect with the CrowdStrike Falcon platform for intelligent security analysis, providing programmatic access to detections, incidents, behaviors, threat intelligence, hosts, vulnerabilities, and identity protection capabilities.

Log into your CrowdStrike Console
- Open your browser and log in to your organization's CrowdStrike Falcon console.
Navigate to API Credentials
- Click on "Support" in the console's menu.
- Select "API Clients and Keys" from the dropdown.
Create a New API Client
- Click the "Add new API client" button.
- Enter a descriptive name for the client (for example, "Falcon MCP Server").
- Optionally, provide a description for your records.
Assign API Scopes
- Select the required API scopes according to the modules you wish to use (for example, Detections: Alerts:read, Incidents:read, etc. Refer to the "Required API Scopes by Module" table in the README for details).
Save and Copy Credentials
- After creating the API client, the console will display:
  - Client ID
  - Client Secret
- Copy these values immediately, as the Client Secret will only be shown once.
Determine Your API Base URL
- Typically, use https://api.crowdstrike.com.
- For other regions, use the corresponding base URL (e.g., https://api.us-2.crowdstrike.com, https://api.eu-1.crowdstrike.com).
Enter Credentials in the FastMCP Connection Interface
- When prompted by the FastMCP "Install Now" button or connection interface, fill in the following ENV values:
  - FALCON_CLIENT_ID - Paste the Client ID you copied from step 5.
  - FALCON_CLIENT_SECRET - Paste the Client Secret you copied from step 5.
  - FALCON_BASE_URL - Enter your CrowdStrike region's base URL.
Complete Installation
- Submit or save the configuration as required by the FastMCP interface.
- The integration should now be enabled and ready to use with the specified CrowdStrike modules.

Summary of Required Environment Variables:

FALCON_CLIENT_ID=<your-client-id>
FALCON_CLIENT_SECRET=<your-client-secret>
FALCON_BASE_URL=https://api.crowdstrike.com  # Or your specific region's URL

Quick Start

View on GitHub

More for Security

View All →

Semgrep

Official

Remote

Integrates with Semgrep's static analysis engine to scan code for security vulnerabilities and coding issues, enabling developers to identify and fix potential problems directly within their coding workflow.

Security Developer Tools

101

1-Click Ready

Auth0

Official

Integrates with LLMs and AI agents, allowing you to perform various Auth0 management operations using natural language. For instance, you could simply ask Claude to create a new Auth0 app and get the domain and client ID.

Cloud Platforms Security

125

Keycloak

Integrates with Keycloak identity management to enable user creation, role assignment, group management, and client listing across different realms

Security

130

Binalyze AIR

Official

Bridges to the Binalyze AIR digital forensics platform, enabling security teams to query endpoint data, monitor status, and manage investigations through a secure API connection.

Security Analytics and Data

Hostinger API

Official

Integrates with Hostinger's hosting platform to enable domain registration and DNS management, VPS creation and configuration, firewall setup, backup operations, and billing subscription handling through over 100 specialized tools organized by service category.

Cloud Platforms Security

109

VirusTotal

This VirusTotal MCP server enables AI assistants to programmatically access VirusTotal's threat intelligence for security analysis and threat detection.

Security Analytics and Data

Shodan

Access Shodan API and CVEDB to query IoT device data and vulnerability information.

Security Monitoring

ChuckNorris (L1B3RT4S Prompt Enhancer)

Enhances language models by fetching specialized prompts from the L1B3RT4S repository, supporting multiple LLMs including ChatGPT, Claude, and Gemini with fallback mechanisms for educational and research purposes.

Security AI and Machine Learning

1-Click Ready

Security Audit

Integrates with npm-audit-report and npm-registry-fetch to analyze and report potential vulnerabilities in Node.js project dependencies, offering actionable security insights for development teams.

Security Developer Tools

1-Click Ready

Plugged.in Random Number Generator

Provides cryptographically secure random number generation with seven specialized tools for integers, floats, bytes, UUIDs, strings, random choices, and booleans using Node.js's crypto module for security-sensitive applications like key generation, session tokens, and password creation.

Security Developer Tools

1-Click Ready

CrowdStrike Falcon

Quick Start

Claude Desktop

Cursor IDE

VS Code

Claude Code

Gemini

Codex

Manual

More for Security

Semgrep

Auth0

Keycloak

Binalyze AIR

Hostinger API

VirusTotal

Shodan

ChuckNorris (L1B3RT4S Prompt Enhancer)

Security Audit

Plugged.in Random Number Generator