Sold by: CrowdStrikeÂ
Deployed on AWS
falcon-mcp enables seamless communication between AI agents and the CrowdStrike Falcon platform. Deployable directly onto Amazon Bedrock AgentCore, it provides programmatic access to Falcon data for agentic workflows and accelerating AI-native security automation.
Overview
This server provides a secure, scalable bridge between AI agents and the CrowdStrike Falcon platform, bringing security telemetry and threat intelligence directly into your AWS environment. Purpose-built for deployment on Amazon Bedrock AgentCore, the falcon-mcp server enables agentic applications to programmatically access detections, incidents, behaviors, and threat intelligence from the Falcon platform. This empowers AI agents to reason over rich security context, automate response workflows, and drive proactive defense across your cloud and enterprise environments. By exposing modular Falcon capabilities through a standardized interface, the falcon-mcp server supports a wide range of use cases, from autonomous incident triage and threat enrichment to building fully agentic, context-aware security operations workflows. The falcon-mcp server gives you the data access layer to build the foundation for an AI-native SOC, backed by the power of the CrowdStrike Falcon platform. To learn more about this resource and explore its capabilities, visit the official project page at: https://github.com/crowdstrike/falcon-mcpÂ
Highlights
- The falcon-mcp server establishes a consistent and secure protocol for agents to communicate with the CrowdStrike Falcon platform, enabling - standardized integration across agentic systems.
- It includes native support for deployment onto Amazon Bedrock AgentCore, making it easy to integrate into your AWS environment and power agentic workflows.
- It is designed to support current and future Falcon platform capabilities, ensuring agentic workflows remain adaptive and comprehensive.
Details
Sold by
Categories
Delivery method
Type
Supported services
Delivery option
Amazon Bedrock AgentCore
CrowdStrike Falcon MCP
Latest version
Operating system
Linux
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata. Review certifications and security standards before purchase.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
This product is available free of charge. Free subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
All orders are non-cancellable and all fees and other amounts you pay under this Agreement are non-refundable.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Amazon Bedrock AgentCore
Supported services: Learn moreÂ
- Amazon Bedrock AgentCore - Preview
Container image
Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.
Version release notes
RC for Amazon Bedrock AgentCore
Additional details
Usage instructions
Please refer to our deployment guide on GitHubÂ
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Wiz MCP Server
By Wiz
The Wiz Model Context Protocol (MCP) Server acts as an MCP-compatible service that translates plain-language queries into Wiz-specific operations, like querying resources, or assessing risks.
Vault MCP Server
By HashiCorp
The Vault MCP Server enables operators to use natural language to perform basic queries and operations in Vault, which would otherwise require traditional methods of issuing requests to Vault via Vault API.
Note: This Vault MCP Server release is experimental in nature and intended for development, testing, and evaluation purposes. Use of the Vault MCP server in production settings is not recommended at this time.
Terraform MCP Server
By HashiCorp
A Terraform MCP Server has been implemented to streamline workflows, allowing developers to write and validate Infrastructure as Code efficiently. This eliminates disruptive context-switching and enables faster, more confident provisioning of cloud infrastructure.
Tavily MCP Server
By Tavily
Tavily MCP is a lightweight server that enables AI assistants to perform real time web search, intelligent crawling, and structured data extraction through the Model Context Protocol (MCP).
CyberArk MCP Server for Secure Cloud Access
By CyberArk
Secure, just-in-time cloud access for developers and AI agents using Zero Standing Privileges right from the CLI, IDE, or AI assistant such as Amazon Q Developer.
Customer reviews
0 ratings
0 AWS reviews
|
76 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
gopikrishnan a.
Crowdstrike falcon Cloud Security helps for Secure our network from cyber attacks
Reviewed on Sep 17, 2025
Review provided by G2
What do you like best about the product?
Security
Visibility
Alerting
Auto update ptaches
Visibility
Alerting
Auto update ptaches
What do you dislike about the product?
Need to Improve UI
Need to Improve Performance
Need to Improve Performance
What problems is the product solving and how is that benefiting you?
Internet Attacks
Gunashekar M.
One of the reliable and best Security Solution for Cloud workloads
Reviewed on Sep 16, 2025
Review provided by G2
What do you like best about the product?
Ease of deployment in less time across perimeter.
What do you dislike about the product?
Console can be difficult at time to traverse on multiple aspects.
What problems is the product solving and how is that benefiting you?
Mainly complete security on the cloud, specifically Kubernetes workloads. SIEM Integration for advanced visibility is good as well
Vijay T.
It simplifies Incident analysis.. must to have in cloud infrastructure
Reviewed on Sep 10, 2025
Review provided by G2
What do you like best about the product?
Interactive dashboard, very detailed analysis of the incident, less false positives, easy integration with other tools
What do you dislike about the product?
Other than the cost factor, I don't see anything to dislike
What problems is the product solving and how is that benefiting you?
Cloud infrastructure is always prone to attack and data leakage, with CrowdStrike Falcon Cloud Security it makes the cloud infra safe, especially in a multi cloud environment.
Gaurang A.
Powerful and Feature-Rich, Yet Pricey
Reviewed on Sep 09, 2025
Review provided by G2
What do you like best about the product?
As marketed, complete protection from code to cloud, ideal for organizations of all sizes - highly efficient with minimal false positives. I found the interface to be very user-friendly and gives insightful data in any alert, which helps to investigate the incidents easily, and the ease of integration with AWS.
What do you dislike about the product?
While it is feature-rich but you have to consider that pricing is a bit on the higher side (even more if you request a custom quote), I highly doubt if small orgs would be able to afford it while being suitable at the same time. Also, you might face a higher learning curve if you are not well-versed in similar security tools.
What problems is the product solving and how is that benefiting you?
Mainly threat detection & protection, Cloud Security with AWS, and Cloud Misconfigurations identifier
Oil & Energy
Its an integrated platform for securing cloud, real-time threat detection & AI-powered analysis.
Reviewed on Sep 09, 2025
Review provided by G2
What do you like best about the product?
CrowdStrike Falcon Cloud Security is an integrated platform for securing cloud environments, praised for its real-time threat detection, AI-powered analysis, and features like attack path analysis and compliance benchmarks.
What do you dislike about the product?
High cost, a steep learning curve, and potential complexities with alerts and integrations.
What problems is the product solving and how is that benefiting you?
Uses machine learning and AI to identify and prevent threats in real-time, even without relying solely on signatures.Visualizes potential routes attackers can take to compromise critical assets, highlighting risks from misconfigurations.Provides automated checks against standards like CIS, HIPAA, and PCI to identify and help remediate misconfigurations. Extends security to containers and Kubernetes environments, offering protection from development to deployment.