npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

thehive-cortex-mcp

v1.3.3

Published

Cortex observable-analysis control CLI with an MCP adapter

Readme

cortexctrl is a control CLI for Cortex, the observable analysis and active-response engine from StrangeBee/TheHive Project. The same package ships cortex-mcp, a Model Context Protocol (MCP) adapter. It exists because analysts already drive Cortex by hand through its web UI or raw REST API, and an AI client can do that work faster: detonate an indicator across every applicable analyzer, aggregate the taxonomy verdicts, and pull artifacts without anyone clicking through a dozen jobs. It differs from a generic HTTP bridge by exposing Cortex's real domain model as 31 typed MCP tools, auto-detecting observable data types, fanning out analysis with a cap, and gating every destructive action (responders, deletes, file reads) behind explicit confirmation.

What it does

cortexctrl and cortex-mcp connect operators and MCP-capable AI clients (Claude Desktop, Claude Code, Codex CLI, OpenClaw, Hermes, and others) to a running Cortex instance so they can perform observable analysis and threat-intelligence enrichment. Cortex is the analyzer/responder engine in the StrangeBee and TheHive SOAR stack: it runs analyzers against observables (IPs, domains, URLs, file hashes, emails, files) and executes responders against TheHive entities. The MCP adapter speaks Cortex's REST API and projects the full pipeline as MCP tools, resources, and prompts, so an agent can browse analyzer definitions, enable and configure them, submit observables, wait for job reports, extract IOC artifacts, and triage alerts. The CLI starts with status, analyzer inventory, single-analyzer observable submission, and job lookup for shells, cron, and CI.

Prerequisites

  • Node.js 20 or later
  • A running Cortex instance (v3.x recommended)
  • A Cortex API key with appropriate permissions

Installation from source

If you prefer to run from a checkout instead of npx:

git clone https://github.com/lidless-labs/cortex-mcp.git
cd cortex-mcp
npm install
npm run build

Then point your client at the built binary (see the per-client recipes below).

Try it (copy-paste MCP client config)

Add this to your MCP client config (this example is Claude Desktop's claude_desktop_config.json; the same command/args/env shape works for Claude Code, Codex, OpenClaw, and Hermes). It runs the published npm package directly with npx, no clone or build required:

{
  "mcpServers": {
    "cortex": {
      "command": "npx",
      "args": ["-y", "thehive-cortex-mcp"],
      "env": {
        "CORTEX_URL": "http://cortex.example.com:9001",
        "CORTEX_API_KEY": "your-org-admin-key",
        "CORTEX_SUPERADMIN_KEY": "your-superadmin-key"
      }
    }
  }
}

The npm package is named thehive-cortex-mcp; it installs a cortex-mcp binary. Set CORTEX_SUPERADMIN_KEY only if you want the organization and user management tools.

CLI

The package ships cortexctrl for shells, cron, and CI. Compatibility alias cortexctl points at the same binary, and cortex-mcp remains the MCP stdio adapter.

cortexctrl status --json
cortexctrl analyzers list --data-type ip
cortexctrl analyzers run AbuseIPDB_1_0 --data-type ip --data 8.8.8.8
cortexctrl jobs get job_123
cortexctrl mcp

cortexctrl reads the same environment as the MCP adapter: CORTEX_URL, CORTEX_API_KEY, optional CORTEX_SUPERADMIN_KEY, optional CORTEX_VERIFY_SSL, and optional timeout and safety flags. File-path submission stays confined to CORTEX_FILE_BASE_DIR and is not exposed in this first CLI slice. Future responder and delete commands must require CORTEX_ALLOW_DESTRUCTIVE=1 plus --confirm --destructive. Fanout remains opt-in in MCP and is intentionally not exposed here yet.

Usage

Claude Code

claude mcp add cortex \
  --env CORTEX_URL=http://cortex.example.com:9001 \
  --env CORTEX_API_KEY=your-org-admin-key \
  --env CORTEX_SUPERADMIN_KEY=your-superadmin-key \
  -- npx -y thehive-cortex-mcp

Add --scope user to make it available from any directory instead of only the current project.

OpenClaw

openclaw mcp set cortex '{
  "command": "npx",
  "args": ["-y", "thehive-cortex-mcp"],
  "env": {
    "CORTEX_URL": "http://cortex.example.com:9001",
    "CORTEX_API_KEY": "your-org-admin-key",
    "CORTEX_SUPERADMIN_KEY": "your-superadmin-key"
  }
}'

If you are running from a source checkout instead, point command/args at the built dist/index.js:

openclaw mcp set cortex '{
  "command": "node",
  "args": ["/absolute/path/to/cortex-mcp/dist/mcp-bin.js"],
  "env": {
    "CORTEX_URL": "http://cortex.example.com:9001",
    "CORTEX_API_KEY": "your-org-admin-key",
    "CORTEX_SUPERADMIN_KEY": "your-superadmin-key"
  }
}'

Then restart the OpenClaw gateway so the new server is picked up:

systemctl --user restart openclaw-gateway
openclaw mcp list   # confirm "cortex" is registered

Hermes Agent

Hermes Agent reads MCP config from ~/.hermes/config.yaml under the mcp_servers key. Add an entry:

mcp_servers:
  cortex:
    command: "npx"
    args: ["-y", "thehive-cortex-mcp"]
    env:
      CORTEX_URL: "http://cortex.example.com:9001"
      CORTEX_API_KEY: "your-org-admin-key"
      CORTEX_SUPERADMIN_KEY: "your-superadmin-key"

Then reload MCP from inside a Hermes session:

/reload-mcp

Codex CLI

Codex CLI registers MCP servers via codex mcp add:

codex mcp add cortex \
  --env CORTEX_URL=http://cortex.example.com:9001 \
  --env CORTEX_API_KEY=your-org-admin-key \
  --env CORTEX_SUPERADMIN_KEY=your-superadmin-key \
  -- npx -y thehive-cortex-mcp

Codex writes the entry to ~/.codex/config.toml under [mcp_servers.cortex]. Verify with:

codex mcp list

Standalone

export CORTEX_URL=http://cortex.example.com:9001
export CORTEX_API_KEY=your-org-admin-key
npx -y thehive-cortex-mcp     # or `npm start` from a source checkout

MCP Tools (31)

Status

| Tool | Description | |------|-------------| | cortex_get_status | Get Cortex instance health, version, and configuration |

Analyzer Tools

| Tool | Description | |------|-------------| | cortex_list_analyzers | List all enabled analyzers, optionally filtered by data type | | cortex_get_analyzer | Get details about a specific analyzer by ID | | cortex_run_analyzer | Submit an observable to a specific analyzer for analysis | | cortex_run_analyzer_by_name | Run an analyzer by name instead of ID (convenience wrapper) | | cortex_run_analyzer_file | Submit a file to an analyzer. filePath is confined to CORTEX_FILE_BASE_DIR (disabled if unset); or pass fileBase64 |

Analyzer Definition Tools

| Tool | Description | |------|-------------| | cortex_list_analyzer_definitions | Browse all available analyzer definitions with filtering (by data type, free/no-config, search) | | cortex_enable_analyzer | Enable an analyzer definition in the current org with configuration | | cortex_disable_analyzer | Disable (remove) an enabled analyzer (destructive; requires confirm=true) |

Job Tools

| Tool | Description | |------|-------------| | cortex_get_job | Get the status and details of an analysis job | | cortex_get_job_report | Get the full report of a completed analysis job | | cortex_wait_and_get_report | Wait for a job to complete and return the report | | cortex_list_jobs | List recent analysis jobs with optional filters | | cortex_get_job_artifacts | Get artifacts (extracted IOCs) from a completed job | | cortex_delete_job | Delete a specific job (destructive; requires confirm=true) | | cortex_cleanup_jobs | Bulk delete jobs by status or age (with dry-run) |

Responder Tools

| Tool | Description | |------|-------------| | cortex_list_responders | List all enabled responders, optionally filtered by data type | | cortex_run_responder | Execute a responder action against a TheHive entity (destructive; requires CORTEX_ALLOW_DESTRUCTIVE=1 and confirm=true) |

Responder Definition Tools

| Tool | Description | |------|-------------| | cortex_list_responder_definitions | Browse all available responder definitions with filtering | | cortex_enable_responder | Enable a responder definition with configuration | | cortex_disable_responder | Disable (remove) an enabled responder |

Bulk Operations

| Tool | Description | |------|-------------| | cortex_analyze_observable | Run analyzers against an observable (auto-detected data type) and aggregate taxonomy results. Pass an analyzers allowlist, or fanOut=true to run all applicable analyzers (capped by CORTEX_MAX_FANOUT) |

Organization Management (superadmin)

| Tool | Description | |------|-------------| | cortex_list_organizations | List all organizations | | cortex_get_organization | Get organization details | | cortex_create_organization | Create a new organization | | cortex_update_organization | Update organization description or status |

User Management (superadmin)

| Tool | Description | |------|-------------| | cortex_list_users | List all users across organizations | | cortex_get_user | Get user details | | cortex_create_user | Create a new user in an organization | | cortex_renew_user_key | Generate a new API key for a user (invalidates previous) | | cortex_get_user_key | Retrieve a user's current API key |

MCP Resources (4)

| URI | Description | |-----|-------------| | cortex://analyzers | Enabled analyzers with capabilities | | cortex://analyzer-definitions | All available analyzer definitions with config requirements | | cortex://responder-definitions | All available responder definitions with config requirements | | cortex://jobs/recent | Last 50 analysis jobs |

MCP Prompts (4)

| Prompt | Description | |--------|-------------| | analyze-observable | Guided workflow for analyzing an observable through Cortex | | investigate-ioc | Deep investigation workflow for a suspicious IOC | | setup-cortex | Guided setup wizard for fresh Cortex instances (enable free analyzers, configure API keys) | | triage-alert | Structured alert triage workflow with multi-observable analysis and risk assessment |

Configuration

| Variable | Required | Default | Description | |----------|----------|---------|-------------| | CORTEX_URL | Yes | - | Cortex base URL (e.g., http://cortex.example.com:9001) | | CORTEX_API_KEY | Yes | - | API key for normal operations (org admin level) | | CORTEX_SUPERADMIN_KEY | No | - | Superadmin API key for org/user/definition management | | CORTEX_VERIFY_SSL | No | true | Set to false to skip SSL verification. Applied via a scoped HTTP dispatcher for Cortex requests only; it does not disable TLS verification process-wide. | | CORTEX_TIMEOUT | No | 30 | Request timeout in seconds | | CORTEX_FILE_BASE_DIR | No | - | Absolute base directory that cortex_run_analyzer_file may read files from. filePath is confined to this directory (realpath checked to defeat symlink/.. escapes); paths outside it are refused. When unset, reading files by path is disabled and you must submit file content via fileBase64. | | CORTEX_ALLOW_DESTRUCTIVE | No | 0 | Set to 1 (or true) to permit running responders (cortex_run_responder), which cause real-world side effects. Off by default. Responders also require confirm=true per call. | | CORTEX_MAX_FANOUT | No | 10 | Maximum number of analyzers cortex_analyze_observable will submit to in a single call when fanning out. |

Security and safety gates

This server can trigger real-world actions and submit observables to third-party services, so several capabilities are secured by default:

  • Arbitrary file reads are blocked. cortex_run_analyzer_file only reads files inside CORTEX_FILE_BASE_DIR (realpath-confined to defeat symlink/.. escapes). With no base dir configured, path-based reads are refused; use fileBase64 to submit content explicitly.
  • Responders are gated. cortex_run_responder requires both CORTEX_ALLOW_DESTRUCTIVE=1 in the environment and confirm=true in the call.
  • Single-item destructive tools require confirmation. cortex_delete_job and cortex_disable_analyzer require confirm=true.
  • Bulk analysis is conservative. cortex_analyze_observable does not fan out to every analyzer by default. Pass an explicit analyzers allowlist, or set fanOut=true to run all applicable analyzers (capped by CORTEX_MAX_FANOUT).
  • SSL verification is scoped. Disabling CORTEX_VERIFY_SSL relaxes TLS only for Cortex connections, never for the whole Node process.

Examples

Set up analyzers from scratch

1. Use cortex_list_analyzer_definitions with freeOnly=true to find analyzers
   that need no API keys.
2. Use cortex_enable_analyzer to enable "Abuse_Finder_3_0" with empty config.
3. Use cortex_analyze_observable with data "8.8.8.8" and fanOut=true to run
   all applicable analyzers (or pass analyzers ["Abuse_Finder"] to scope it).

Auto-detect observable type

Use cortex_analyze_observable with data "185.220.101.42" and fanOut=true
(no dataType needed - auto-detects as IP). Or pass an `analyzers` allowlist
to limit which analyzers run.

Clean up old failed jobs

Use cortex_cleanup_jobs with status "Failure", dryRun true to preview,
then dryRun false to delete.

Analyze a file

Set CORTEX_FILE_BASE_DIR=/srv/cortex-uploads in the server environment, then:
Use cortex_run_analyzer_file with analyzerId "Yara_3_0",
filePath "/srv/cortex-uploads/suspicious.exe" to scan with YARA rules.
(Paths outside CORTEX_FILE_BASE_DIR are refused; alternatively pass fileBase64.)

Manage API keys

Use cortex_renew_user_key with userId "analyst1" to rotate their API key.

Triage a security alert

Use the triage-alert prompt with alertDescription "Suspicious outbound traffic
detected" and observables "185.220.101.42, evil.example.com, 44d88612fea8a8f36de82e1278abb02f"

Supported Data Types

| Type | Examples | Auto-detected | |------|----------|---------------| | ip | 8.8.8.8, 2001:db8::1 | yes | | domain | example.com | yes | | url | https://malware.example.com/payload | yes | | hash | MD5, SHA1, SHA256, SHA512 | yes | | mail | [email protected] | yes | | fqdn | mail.example.com | As domain | | filename | malware.exe | Manual | | registry | HKLM\Software\Malware | Manual | | file | Binary file uploads | Manual | | other | CVEs, custom types | Manual |

Deployment

Proxmox LXC

bash -c "$(wget -qLO - https://raw.githubusercontent.com/lidless-labs/cortex-mcp/main/scripts/proxmox_install.sh)"

Why not something else?

  • The Cortex web UI is built for one analyst clicking through jobs by hand. cortex-mcp puts the same engine behind an AI client, so analysis, taxonomy aggregation, and artifact extraction happen conversationally instead of through a dozen page loads.
  • A raw REST wrapper or generic HTTP MCP bridge gives a model an untyped endpoint and no domain knowledge. cortex-mcp models analyzers, responders, jobs, definitions, organizations, and users as 31 typed tools with auto data-type detection, capped fan-out, and built-in safety gates, so the agent works in Cortex's vocabulary rather than reconstructing the API from scratch.
  • Wiring Cortex into a SOAR runbook or n8n flow is great for fixed, pre-authored pipelines. This server is for the open-ended path: ad hoc enrichment, investigation, and triage where the analyst (or the agent) decides the next step as results come in.
  • thehive-mcp (the companion server) drives case and alert management in TheHive. cortex-mcp is the analysis-and-response layer; the two are complementary, not substitutes.

What cortex-mcp is not

  • It is not a Cortex replacement or a reimplementation of analyzers. It calls a Cortex instance you already run; Cortex still does the analysis.
  • It is not a SIEM, a case manager, or a TheHive client. Case and alert workflows belong to TheHive (see thehive-mcp).
  • It is not an autonomous responder. Destructive actions (responders, job deletion, file reads by path) are off or confirmation-gated by default and never fire silently.
  • It is not a hosted service. It runs locally as a stdio MCP server next to your client; nothing is sent anywhere except the Cortex instance you configure.

Testing

npm test              # Unit tests
npm run test:watch    # Watch mode
npm run lint          # Type check

# Integration tests (requires live Cortex instance)
CORTEX_URL=http://cortex.example.com:9001 \
CORTEX_API_KEY=your-key \
CORTEX_SUPERADMIN_KEY=your-superadmin-key \
npx vitest run tests/integration.test.ts

Project Structure

cortex-mcp/
  src/
    index.ts                  # MCP server entry point
    config.ts                 # Environment config + validation
    client.ts                 # Cortex REST API client (full surface)
    types.ts                  # Cortex API type definitions
    resources.ts              # MCP resources (4)
    prompts.ts                # MCP prompts (4)
    tools/
      analyzers.ts            # Analyzer tools (list, get, run, run-by-name)
      analyzer-definitions.ts # Definition browsing, enable, disable
      jobs.ts                 # Job management + cleanup
      responders.ts           # Responder tools (list, run)
      responder-definitions.ts # Definition browsing, enable, disable
      bulk.ts                 # Bulk analysis with auto-detect
      status.ts               # Health/version check
      organizations.ts        # Org CRUD (superadmin)
      users.ts                # User CRUD + key management (superadmin)
  tests/
    client.test.ts            # API client unit tests
    tools.test.ts             # Tool handler unit tests
    integration.test.ts       # Live instance integration tests
  scripts/
    proxmox_install.sh        # Proxmox LXC deployment script

Contributing

Issues and pull requests are welcome. See CONTRIBUTING.md for the contribution path and SECURITY.md for reporting vulnerabilities. By participating you agree to the Code of Conduct.

License

MIT. See LICENSE.