splunk-mcp-llm-siemulator-linux

MCP Tool

rsfl/splunk-mcp-llm-siemulator-linux

Linux version of Splunk MCP LLM MCP SIEMulator . A Docker lab integrating Splunk SIEM with Ollama LLM via Model Context Protocol for AI-powered security operations. Features Promptfoo evaluation, OpenWebUI chat interface, Splunk UF and Raw HEC logging for real-time event ingestion and LLM-assisted incident response testing.

Install

$ npx loaditout add rsfl/splunk-mcp-llm-siemulator-linux

Platform-specific configuration:

.claude/settings.json

{
  "mcpServers": {
    "splunk-mcp-llm-siemulator-linux": {
      "command": "npx",
      "args": [
        "-y",
        "splunk-mcp-llm-siemulator-linux"
      ]
    }
  }
}

Add the config above to .claude/settings.json under the mcpServers key.

Reviews

Loading reviews...

Quality Signals

Stars

Installs

Last updated64 days ago

Security: B

New

Safety

Risk Levelmedium

Data Access

read

Network Accessnone

Details

Sourcegithub-crawl

Last commit1/22/2026

View on GitHub→

Embed Badge

[![Loaditout](https://loaditout.ai/api/badge/rsfl/splunk-mcp-llm-siemulator-linux)](https://loaditout.ai/skills/rsfl/splunk-mcp-llm-siemulator-linux)