enrichment-mcp
The Enrichment MCP Server is a Model Context Protocol server that facilitates enrichment operations on observables through various third-party services. It supports multiple observable types and provides a configurable, extendable solution for enrichment needs, emphasizing future usability and template management through Jinja2.
Enrichment MCP Server
A Model Context Protocol (MCP) server designed to perform enrichment on various observables using configured services. It employs third-party enrichment services, including VirusTotal and Hybrid Analysis, among others. Key features include endpoints for observable-lookup, lookup-ipaddress, lookup-domain, lookup-url, and lookup-email. Services supported are mapped for enrichment action types. The configuration is managed through a config file with sensitive data stored as environmental variables.
Features
observable-lookup: Routes observables to the correct tool.lookup-ipaddress: Enriches IPv4 addresses.lookup-domain: Enriches domain names.lookup-url: Enriches URLs.lookup-email: Enriches email addresses.
Usage
Follow instructions from https://modelcontextprotocol.io/quickstart/user to set up the server. Requires installation of uv and addition of the repository to the configuration file of Claude for Desktop.