ThreatLocker-MCP

Space-C0wboy/ThreatLocker-MCP
★ 0 stars Python AI/LLM Updated 1mo ago
MCP server that wraps the ThreatLocker Portal API, exposing endpoint management, allowlisting, and policy controls as tools for AI assistants like Claude Desktop and Claude Code.
View on GitHub → 🔍 Audit Wallet Slippage →

Quick Install

Copy the config for your editor. Some servers may need additional setup — check the README.

Add to claude_desktop_config.json:

{
  "mcpServers": {
    "threatlocker-mcp": {
      "command": "uvx",
      "args": [
        "threatlocker-mcp"
      ]
    }
  }
}

Or install with pip: pip install threatlocker-mcp

README Excerpt

**threatlocker-mcp** is a [Model Context Protocol](https://modelcontextprotocol.io/) server that connects AI assistants such as Claude Desktop and Claude Code with the [ThreatLocker Portal API](https://portalapi.h.threatlocker.com/swagger/index.html). 44 tools — generated directly from the official OpenAPI 3.0 spec — give your AI assistant programmatic access to computers, approvals, action logs, tags, maintenance mode, reports, and more, across single-org and parent/child tenant setups.

Tools (9)

INFOLOG_LEVELMCP_HTTP_HOSTMCP_HTTP_PORTTHREATLOCKER_API_KEYTHREATLOCKER_BASE_URLTHREATLOCKER_ORG_IDTHREATLOCKER_TIMEOUTlist_organizations