How do I use AI SOC Agent MCP Server?

1. Click on "Install Server". 2. Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state. 3. In the chat, type @ followed by the MCP server name and your instructions, e.g., "@AI SOC Agent MCP Server Analyze the brute force incident and give severity" That's it! The server will respond to your query, and you can continue using it as needed. Here is a step-by-step guide with screenshots.

AI SOC Agent MCP Server

by golden-horizon

Overview Schema Related Servers Score Discussions

Python

Local

# AI SOC Agent

AI SOC Agent is a cybersecurity incident analysis tool built with Python.

## Features

- Detects Brute Force attacks

- Detects SQL Injection attempts

- Detects XSS attempts

- Detects API Abuse

- Detects Session Hijacking

- Maps incidents to MITRE ATT&CK

- Generates recommended remediation actions

- Exports incident reports to JSON

## Run


python agent.py



\## MCP Integration



This project includes an MCP server exposing SOC analysis tools:



\- `soc\_map\_attack`

\- `soc\_calculate\_severity`

\- `soc\_map\_mitre`

\- `soc\_recommend\_actions`



The MCP client successfully calls the server and returns:



```text

Attack: Brute Force

Severity: High

MITRE: T1110 - Brute Force

Actions: Block source IP



\## Current MCP Test Output



The MCP client successfully analyzes multiple security incidents:



\- Brute Force

\- SQL Injection

\- XSS

\- API Abuse

\- Session Hijacking



Each incident returns:



\- Attack type

\- Severity

\- MITRE ATT\&CK technique

\- Recommended remediation actions



\## Interactive AI SOC Assistant



Run:



```bash

python ai\_soc\_assistant.py



Which incidents should I escalate?

Show MITRE mapping

Give me remediation actions

Give me summary



The assistant reads mcp\_incident\_reports.json and answers SOC analyst questions.





Then commit:



```powershell

git add .

git commit -m "Add interactive SOC assistant documentation"

This server cannot be installed

license - not found

quality - not tested

maintenance

How are these scores calculated?

Maintenance

–Maintainers

–Response time

–Release cycle

–Releases (12mo)

Commit activity

Resources

GitHub Repository

Need Help?

Related Servers

Unclaimed servers have limited discoverability.

Looking for Admin?

If you are the server author, to access and configure the admin panel.

Latest Blog Posts

Lightport: Open-Sourcing Glama's AI Gateway
By punkpeye on April 27, 2026.
open source
OpenAI
Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/golden-horizon/ai-soc-agent'

If you have feedback or need assistance with the MCP directory API, please join our Discord server