Skip to main content
Glama

Chronicle SecOps MCP Server

by emeryray2002

lookup_entity

Identify and analyze security-related entities such as IPs, domains, or hashes in Chronicle SecOps. Retrieve summary information to assess threats and incidents within a specified time frame.

Instructions

Look up an entity (IP, domain, hash, etc.) in Chronicle.

Args: entity_value: Value to look up (IP, domain, hash, etc.) project_id: Google Cloud project ID (defaults to config) customer_id: Chronicle customer ID (defaults to config) hours_back: How many hours to look back (default: 24) region: Chronicle region (defaults to config) Returns: Entity summary information

Input Schema

NameRequiredDescriptionDefault
customer_idNo
entity_valueYes
hours_backNo
project_idNo
regionNo

Input Schema (JSON Schema)

{ "properties": { "customer_id": { "default": null, "title": "Customer Id", "type": "string" }, "entity_value": { "title": "Entity Value", "type": "string" }, "hours_back": { "default": 24, "title": "Hours Back", "type": "integer" }, "project_id": { "default": null, "title": "Project Id", "type": "string" }, "region": { "default": null, "title": "Region", "type": "string" } }, "required": [ "entity_value" ], "title": "lookup_entityArguments", "type": "object" }
Install Server

Other Tools from Chronicle SecOps MCP Server

Related Tools

    MCP directory API

    We provide all the information about MCP servers via our MCP API.

    curl -X GET 'https://glama.ai/api/mcp/v1/servers/emeryray2002/mcp-secops-v3'

    If you have feedback or need assistance with the MCP directory API, please join our Discord server