@pipeworx/isc-sans
Connect: https://gateway.pipeworx.io/isc-sans/mcp · Install: one-click buttons
Tools: 3
Tools
- ip_reputation — Look up an IPv4 address in the SANS ISC DShield database — its attack-report history, ASN/owner, abuse contact, and risk. A high report_count means the IP is an active attack source (firewall logs sub
- port_activity — Get recent attack/probe activity for a TCP/UDP port from SANS ISC — daily counts of report records, distinct target IPs, and distinct source IPs hitting the port. Useful for spotting scanning surges a
- threat_level — Get the global SANS ISC InfoCon threat level — the internet-wide “weather report” for malicious activity. Returns one of green/yellow/orange/red with a plain-English meaning. An at-a-glance signal o
Tools
-
ip_reputation— Look up an IPv4 address in the SANS ISC DShield database — its attack-report history, ASN/owner, abuse contact, and risk. A high report_count means the IP is an active attack source (firewall logs sub -
port_activity— Get recent attack/probe activity for a TCP/UDP port from SANS ISC — daily counts of report records, distinct target IPs, and distinct source IPs hitting the port. Useful for spotting scanning surges a -
threat_level— Get the global SANS ISC InfoCon threat level — the internet-wide weather report for malicious activity. Returns one of green/yellow/orange/red with a plain-English meaning. An at-a-glance signal of wh