BloodHound-MCPServer

MorDavid
GitHub
Active DirectorySecurityAI Integration

Loading subscription status...

๐Ÿ’ก Description

BloodHound-MCP is a powerful integrated solution providing Model Context Protocol (MCP) server functionalities for the industry-standard Active Directory security analysis tool, BloodHound. This integration allows analysis of BloodHound data using natural language, making complex attack path analysis in Active Directory accessible to everyone.

๐Ÿ“ JSON Entries

{
  "mcpServers": [
    {
      "BloodHound-MCP": {
        "env": {
          "BLOODHOUND_URI": "bolt://localhost:7687",
          "BLOODHOUND_PASSWORD": "bloodhoundcommunityedition",
          "BLOODHOUND_USERNAME": "neo4j"
        },
        "args": [
          "<Your_Path>\\BloodHound-MCP.py"
        ],
        "command": "python"
      }
    }
  ]
}

๐Ÿ› ๏ธ Tools

BloodHoundNeo4jPython

โšก Features

  • Natural language interface
  • Comprehensive analysis categories
  • Integration with Neo4j database
  • Use of BloodHound standard queries

๐Ÿ’ฌ Example Queries

  • Show me all paths from kerberoastable users to domain admins
  • Find computers with local admin access to domain users
  • Identify domain controllers vulnerable to NTLM relay attacks
  • Map all Active Directory certificate service vulnerabilities
  • Generate a comprehensive security report for my domain
  • Find disabled privileged accounts
  • Show attack paths to high-value targets