Stats
Actions
Available In
Tags
Help us improve
Share bugs, ideas, or general feedback.
Plugin
proofpoint
Manage Proofpoint Email Protection workflows: query TAP threats and click activity, search/release quarantines, decode rewritten URLs, generate VAP reports on high-risk users, investigate campaigns and forensics, and access threat intelligence using API skills, commands, and remote MCP endpoint.
$
npx claudepluginhub wyre-technology/msp-claude-plugins --plugin proofpointPopularity
Stars
Med: 0·Avg: 274
Installs
Med: 0·Avg: 1
What's Inside
Slash Commands6
check-threats
/check-threats
View recent TAP threat events including blocked messages, delivered threats, and click activity
decode-url
/decode-url
Decode a Proofpoint URL Defense rewritten URL back to the original URL
investigate-threat
/investigate-threat
Deep-dive threat investigation with forensics, campaign context, and remediation options
release-quarantine
/release-quarantine
Release one or more quarantined messages to their intended recipients
search-quarantine
/search-quarantine
Search quarantined messages in Proofpoint by sender, recipient, subject, or reason
Skills7
Proofpoint API Patterns
/api-patterns
Use this skill when working with the Proofpoint API - authentication using HTTP Basic Auth with service principal and secret, base URLs, rate limits, pagination, error codes, and common integration patterns. Covers TAP SIEM API, quarantine API, people API, and URL Defense API authentication and usage patterns.
Proofpoint Forensics
/forensics
Use this skill when working with Proofpoint forensics and threat response - auto-pull, search and destroy, message trace, evidence collection, and remediation workflows. Covers post-delivery remediation, message investigation, and incident response procedures for email-borne threats.
Proofpoint People
/people
Use this skill when working with Proofpoint people-centric security - Very Attacked People (VAP) reports, top clickers, user risk scoring, attack index, and user-level threat analytics. Covers identifying high-risk users, measuring user susceptibility, and implementing targeted security controls for the most attacked people.
Proofpoint Quarantine
/quarantine
Use this skill when working with Proofpoint email quarantine - listing, searching, releasing, and deleting quarantined messages. Covers quarantine reasons, sender and recipient filtering, bulk operations, quarantine folders, and message preview. Essential for MSP help desk teams managing quarantined email for clients.
Proofpoint TAP
/tap
Use this skill when working with Proofpoint Targeted Attack Protection (TAP) - retrieving threat events, click tracking, message delivery and blocking data, SIEM integration feeds, and threat type analysis. Covers URL threats, attachment threats, message-level threats, permitted and blocked clicks, and campaign correlation. Essential for MSP security analysts monitoring email threat activity.
MCP Servers1
Stats
Version0.1.0
LanguageTypeScript
Stars24
Forks13
Copy clicks2
MaintenanceGood
LicenseApache-2.0
Last Commit
Added
Available In
Safety Signals
Caution
External network access
Connects to servers outside your machine
Tags
Help us improve
Share bugs, ideas, or general feedback.
