BloodHound MCP

Integrations

  • Integrates with Neo4j database to store and query BloodHound data about Active Directory and Azure Active Directory environments, enabling natural language queries for security analysis without writing Cypher queries directly.

BloodHound MCP

BloodHound MCP (Model Context Protocol) is an innovative extension of the BloodHound tool, designed to enable Large Language Models (LLMs) to interact with and analyze Active Directory (AD) and Azure Active Directory (AAD) environments through natural language queries. By leveraging the power of LLMs, BloodHound MCP allows users to perform complex queries and retrieve insights from their AD/AAD environments using simple, conversational commands.

Features

  • Natural Language Queries: Use conversational language to query your AD/AAD environment without needing to write Cypher queries manually.
  • LLM-Powered Analysis: Harness the capabilities of Large Language Models to interpret and execute queries on your behalf.
  • Seamless Integration: Works with existing BloodHound data stored in Neo4j, providing a user-friendly interface for complex analysis.
  • Customizable: Easily configure the system to work with your specific environment and tools.

Configure the MCP Server

{ "mcpServers": { "BloodHound": { "name": "BloodHound", "isActive": true, "command": "uv", "args": [ "run", "--with", "mcp[cli],neo4j", "mcp", "run", "<PATH_TO_THE_PROJECT>server.py" ], "env": { "BLOODHOUND_URI": "bolt://localhost:7687", "BLOODHOUND_USERNAME": "neo4j", "BLOODHOUND_PASSWORD": "bloodhound" } } } }

Usage

Configuration

To customize BloodHound MCP, update the configuration file in your MCP-supported tool. Key settings include:

  • Neo4j Database Connection:
    • BLOODHOUND_URI: The URI of your Neo4j database (e.g., bolt://localhost:7687).
    • BLOODHOUND_USERNAME: Your Neo4j username.
    • BLOODHOUND_PASSWORD: Your Neo4j password.
  • Server Settings: Adjust the command and args to match your environment and tool requirements.

Contributing

We welcome contributions to BloodHound MCP! To get involved:

  1. Fork the Repository: Create your own copy on GitHub.
  2. Create a Branch: Work on your feature or fix in a new branch.
  3. Submit a Pull Request: Include a clear description of your changes.

Special Thanks

Custom queries from : https://github.com/CompassSecurity/BloodHoundQueries

Related MCP Servers

  • A
    security
    F
    license
    A
    quality
    The server facilitates natural language interactions for exploring and understanding codebases, providing insights into data models and system architecture using a cost-effective, simple setup with support for existing Claude Pro subscriptions.
    Last updated -
    4
    7
    Python
    • Apple
  • -
    security
    A
    license
    -
    quality
    A Model Context Protocol server that enables Large Language Models to seamlessly interact with ClickHouse databases, supporting resource listing, schema retrieval, and query execution.
    Last updated -
    1
    Python
    MIT License
    • Linux
    • Apple
  • -
    security
    A
    license
    -
    quality
    A Model Context Protocol server that enables Large Language Models to interact with ClickUp workspace tasks and data, allowing creation and retrieval of tasks through natural language.
    Last updated -
    59
    TypeScript
    MIT License
    • Apple
  • -
    security
    -
    license
    -
    quality
    A Model Context Protocol server that enables natural language querying of Kaseya's Autotask PSA data through AI assistants, supporting contract analysis, ticket tracking, agent activities, and project status monitoring.
    Last updated -
    JavaScript
    MIT License

View all related MCP servers

ID: 3cmhwig3al