AWS CloudTrail MCP Server

Name: AWS CloudTrail MCP Server
Author: AWS Labs

by @aws labs

TYPE

Official

Resources

Author Website Source Repository

AWS CloudTrail MCP Server

This AWS Labs Model Context Protocol (MCP) server for CloudTrail enables your AI agents to query AWS account activity for security investigations, compliance auditing, and operational troubleshooting. It provides comprehensive access to CloudTrail events and CloudTrail Lake analytics, allowing agents to track API calls, analyze user activity, and perform advanced security analysis. This server gives AI agents seamless access to CloudTrail data through standardized MCP interfaces, eliminating the need for custom API integrations and enabling powerful security insights and audit capabilities.

Tools (5)

This server provides the following tools for AI assistants:

Lake Query

read

Execute SQL queries against CloudTrail Lake for complex analytics and filtering. Supports Trino-compatible SQL syntax for advanced analysis

List Event Data Stores

read

List available CloudTrail Lake Event Data Stores with their capabilities and event selectors

AWS CloudTrail MCP Server

TYPE

Resources

AWS CloudTrail MCP Server

Tools (5)

Lake Query

List Event Data Stores

Get Query Status

Get Query Results

Lookup Events