Description
MCP server for Splunk by Deslicer that provides AI assistants with direct access to Splunk Enterprise through the Splunk SDK, enabling search execution, health monitoring, user management, and alert analysis. Built with Python and FastMCP, it features a modular tool architecture with core Splunk operations, community-contributed tools for specialized use cases, and workflow-based troubleshooting systems with OpenAI integration for automated analysis and summarization. The implementation includes Docker deployment with Traefik routing, hot reload development support, comprehensive testing, and both production and development configurations, making it useful for DevOps teams, security analysts, and system administrators who need to integrate Splunk data analysis and monitoring capabilities directly into their AI-powered workflows without switching between applications.
Installation
git clone https://github.com/deslicer/mcp-for-splunkClaude Desktop Configuration
Add this configuration to your Claude Desktop config file to enable this MCP server:
Config file location: ~/Library/Application Support/Claude/claude_desktop_config.json
Config file location: %APPDATA%\Claude\claude_desktop_config.json
Config file location: ~/.config/Claude/claude_desktop_config.json
{
"mcpServers": {
"splunk": {
"command": "node",
"args": [
"path/to/server.js"
]
}
}
}