A Docker lab integrating Splunk SIEM with Ollama LLM via Model Context Protocol for AI-powered security operations. Features Promptfoo evaluation, OpenWebUI chat interface, and Raw HEC logging for real-time event ingestion and LLM-assisted incident response testing.
Proof of Concept Splunk MCP server plus file MCP Server
