attAck-mcp-server
attAck-mcp-server is a dedicated server for accessing information about adversarial attack techniques and tactics using the Model Context Protocol. It offers essential tools for querying and retrieving threat intelligence from the ATT&CK database. The project supports robust methods for understanding cybersecurity threats and mitigations.
attAck-mcp-server
This project is a Model Context Protocol (MCP) server designed for querying ATT&CK (Adversarial Tactics, Techniques, and Common Knowledge) techniques and tactics. It allows users to retrieve information about various attack strategies employed by adversaries. The server includes tools like query_technique for querying techniques by ID or name, query_mitigations for finding techniques' mitigations, query_detections for discovering detection methods, and list_tactics for listing all tactics.
Usage
To utilize this MCP server, a configured MCP client is required. Once connected, the provided tools can be used to query ATT&CK techniques and tactics.
Installation
- Clone this repository.
- Install the necessary dependencies using
pip. - Configure the server within the MCP client of your choice.
Quick Start
- Run the server with Python for development or debugging, or use Docker for production environments.
- The server runs by default at
http://127.0.0.1:8001.