enrichment-mcp
The Enrichment MCP Server is designed to perform enrichment on observables using a variety of third-party services like VirusTotal and Hybrid Analysis. It makes use of the security-cli Python package and supports multiple observable types. The server can be configured with different templates and environmental variables for secure operation.
Enrichment MCP Server
This project provides a Model Context Protocol (MCP) server for performing enrichment based on a given observable. It leverages services like VirusTotal and Hybrid Analysis to perform third-party enrichment using the security-cli Python package. Key features include support for various observable types like IP addresses, domains, URLs, and emails, depending on the service being used. Users can configure enrichment services using the provided configurations and templates. Environmental variables are recommended for storing secrets securely.
Supported Services
- VirusTotal, HybridAnalysis, AlienVault, Shodan, Urlscan.io, AbuseIPDB, HaveIBeenPwned
MCP Server Usage
- Use a pre-built server following instructions from the Model Context Protocol website.
Contributing
Contributions via pull requests are welcome.