Skip to content

Wiz MCP Commands

Comprehensive Wiz MCP (Model Context Protocol) commands and workflows for AI-powered cloud security automation.

MCP Server Setup

Command	Description
`wiz-mcp install`	Install Wiz MCP server
`wiz-mcp configure`	Configure MCP server
`wiz-mcp start`	Start MCP server
`wiz-mcp stop`	Stop MCP server
`wiz-mcp status`	Check server status
`wiz-mcp --version`	Show version information
`wiz-mcp --help`	Show help information

Authentication and Connection

Command	Description
`wiz-mcp auth login`	Login to Wiz platform
`wiz-mcp auth logout`	Logout from platform
`wiz-mcp auth status`	Check authentication status
`wiz-mcp auth token`	Manage API tokens
`wiz-mcp connect --endpoint <url>`	Connect to Wiz endpoint
`export WIZ_API_TOKEN=<token>`	Set environment token

AI Assistant Integration

Command	Description
`wiz-mcp claude connect`	Connect to Claude Desktop
`wiz-mcp cursor connect`	Connect to Cursor IDE
`wiz-mcp vscode connect`	Connect to VS Code
`wiz-mcp chat enable`	Enable chat interface
`wiz-mcp chat disable`	Disable chat interface

Security Queries

Command	Description
`wiz-mcp query vulnerabilities`	Query vulnerability data
`wiz-mcp query compliance`	Query compliance status
`wiz-mcp query risks`	Query security risks
`wiz-mcp query assets`	Query cloud assets
`wiz-mcp query incidents`	Query security incidents
`wiz-mcp query policies`	Query security policies

Cloud Asset Management

Command	Description
`wiz-mcp assets list`	List cloud assets
`wiz-mcp assets scan`	Scan cloud assets
`wiz-mcp assets filter --type vm`	Filter by asset type
`wiz-mcp assets filter --risk high`	Filter by risk level
`wiz-mcp assets export`	Export asset inventory

Vulnerability Management

Command	Description
`wiz-mcp vulns list`	List vulnerabilities
`wiz-mcp vulns show <vuln-id>`	Show vulnerability details
`wiz-mcp vulns filter --severity critical`	Filter by severity
`wiz-mcp vulns filter --status open`	Filter by status
`wiz-mcp vulns remediate <vuln-id>`	Get remediation guidance
`wiz-mcp vulns export`	Export vulnerability data

Compliance Monitoring

Command	Description
`wiz-mcp compliance status`	Check compliance status
`wiz-mcp compliance --framework cis`	Check CIS compliance
`wiz-mcp compliance --framework pci`	Check PCI compliance
`wiz-mcp compliance --framework sox`	Check SOX compliance
`wiz-mcp compliance report`	Generate compliance report

Incident Response

Command	Description
`wiz-mcp incidents list`	List security incidents
`wiz-mcp incidents show <incident-id>`	Show incident details
`wiz-mcp incidents investigate <incident-id>`	Start investigation
`wiz-mcp incidents timeline <incident-id>`	Show incident timeline
`wiz-mcp incidents respond <incident-id>`	Initiate response

Policy Management

Command	Description
`wiz-mcp policies list`	List security policies
`wiz-mcp policies show <policy-id>`	Show policy details
`wiz-mcp policies validate`	Validate policies
`wiz-mcp policies violations`	Show policy violations
`wiz-mcp policies enforce <policy-id>`	Enforce policy

AI-Powered Analysis

Command	Description
`wiz-mcp ai analyze`	AI-powered security analysis
`wiz-mcp ai recommendations`	Get AI recommendations
`wiz-mcp ai prioritize`	AI-based risk prioritization
`wiz-mcp ai investigate <query>`	AI-assisted investigation
`wiz-mcp ai remediation <vuln-id>`	AI remediation suggestions

Automation Workflows

Command	Description
`wiz-mcp workflows list`	List automation workflows
`wiz-mcp workflows create <name>`	Create new workflow
`wiz-mcp workflows run <workflow-id>`	Run workflow
`wiz-mcp workflows schedule <workflow-id>`	Schedule workflow
`wiz-mcp workflows logs <workflow-id>`	View workflow logs

Integration Management

Command	Description
`wiz-mcp integrations list`	List integrations
`wiz-mcp integrations add <service>`	Add integration
`wiz-mcp integrations configure <service>`	Configure integration
`wiz-mcp integrations test <service>`	Test integration
`wiz-mcp integrations remove <service>`	Remove integration

Reporting and Analytics

Command	Description
`wiz-mcp reports generate`	Generate security report
`wiz-mcp reports schedule`	Schedule reports
`wiz-mcp reports export --format pdf`	Export report as PDF
`wiz-mcp reports export --format json`	Export report as JSON
`wiz-mcp analytics dashboard`	Open analytics dashboard

Cloud Provider Integration

Command	Description
`wiz-mcp aws connect`	Connect AWS account
`wiz-mcp azure connect`	Connect Azure subscription
`wiz-mcp gcp connect`	Connect GCP project
`wiz-mcp kubernetes connect`	Connect Kubernetes cluster
`wiz-mcp docker connect`	Connect Docker registry

Security Scanning

Command	Description
`wiz-mcp scan infrastructure`	Scan cloud infrastructure
`wiz-mcp scan containers`	Scan container images
`wiz-mcp scan code`	Scan source code
`wiz-mcp scan iac`	Scan Infrastructure as Code
`wiz-mcp scan secrets`	Scan for exposed secrets

Risk Assessment

Command	Description
`wiz-mcp risk assess`	Perform risk assessment
`wiz-mcp risk score`	Calculate risk score
`wiz-mcp risk trends`	Show risk trends
`wiz-mcp risk matrix`	Generate risk matrix
`wiz-mcp risk forecast`	Risk forecasting

Monitoring and Alerts

Command	Description
`wiz-mcp monitor start`	Start continuous monitoring
`wiz-mcp monitor stop`	Stop monitoring
`wiz-mcp alerts list`	List active alerts
`wiz-mcp alerts configure`	Configure alert rules
`wiz-mcp alerts test`	Test alert configuration

Data Export and Import

Command	Description
`wiz-mcp export --type vulnerabilities`	Export vulnerability data
`wiz-mcp export --type assets`	Export asset data
`wiz-mcp export --type compliance`	Export compliance data
`wiz-mcp import --file <file>`	Import data from file
`wiz-mcp sync`	Sync data with Wiz platform

Configuration Management

Command	Description
`wiz-mcp config show`	Show current configuration
`wiz-mcp config set <key> <value>`	Set configuration value
`wiz-mcp config reset`	Reset to default configuration
`wiz-mcp config validate`	Validate configuration
`wiz-mcp config backup`	Backup configuration

Performance and Optimization

Command	Description
`wiz-mcp optimize performance`	Optimize performance
`wiz-mcp cache clear`	Clear cache
`wiz-mcp cache status`	Check cache status
`wiz-mcp --parallel <count>`	Set parallel processing
`wiz-mcp --timeout <seconds>`	Set operation timeout

Debugging and Troubleshooting

Command	Description
`wiz-mcp debug --log-level debug`	Enable debug logging
`wiz-mcp debug connectivity`	Test connectivity
`wiz-mcp debug permissions`	Check permissions
`wiz-mcp debug validate`	Validate setup
`wiz-mcp logs --tail 100`	View recent logs

Environment Variables

Variable	Description
`WIZ_API_TOKEN`	Wiz API authentication token
`WIZ_ENDPOINT`	Wiz API endpoint URL
`WIZ_MCP_PORT`	MCP server port
`WIZ_MCP_HOST`	MCP server host
`WIZ_LOG_LEVEL`	Logging level

Configuration Files

File	Description
`wiz-mcp.config.json`	Main configuration file
`wiz-mcp-policies.yml`	Policy configuration
`wiz-mcp-workflows.yml`	Workflow definitions
`.wiz-mcp-ignore`	Files to ignore

Docker Integration

Command	Description
`docker run wiz/mcp-server`	Run MCP server in Docker
`docker run -p 8080:8080 wiz/mcp-server`	Run with port mapping
`docker run -e WIZ_API_TOKEN=$TOKEN wiz/mcp-server`	Run with environment variables

Kubernetes Deployment

Command	Description
`kubectl apply -f wiz-mcp-deployment.yaml`	Deploy MCP server
`kubectl get pods -l app=wiz-mcp`	Check MCP pods
`kubectl logs -l app=wiz-mcp`	View MCP logs
`kubectl port-forward svc/wiz-mcp 8080:8080`	Port forward to MCP service

API Endpoints

Endpoint	Description
`GET /api/v1/health`	Health check
`GET /api/v1/vulnerabilities`	Get vulnerabilities
`GET /api/v1/assets`	Get cloud assets
`GET /api/v1/compliance`	Get compliance status
`POST /api/v1/scan`	Trigger security scan

Webhook Configuration

Event	Description
`vulnerability.detected`	New vulnerability found
`compliance.violation`	Compliance violation detected
`incident.created`	Security incident created
`risk.elevated`	Risk level elevated
`scan.completed`	Security scan completed