jmstar85/azure-sentinel-mcp
If you are the rightful owner of azure-sentinel-mcp and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to dayong@mcphub.com.
Advanced Sentinel MCP Server is a comprehensive threat analysis and automated response system designed to enhance security operations through advanced threat intelligence, attack path prediction, and automated response coordination.
Tools
Functions exposed to the LLM to take actions
threat_event_analysis
In-depth threat event analysis
mitre_attack_mapping
MITRE ATT&CK framework mapping
ioc_extraction
IoC extraction and enrichment
threat_actor_profiling
Threat actor profile generation
next_ttp_prediction
ML-based next TTP prediction
kill_chain_analysis
Kill Chain progress analysis
attack_timeline_reconstruction
Attack timeline reconstruction
business_impact_assessment
Business impact assessment
response_plan_generation
Automated response plan generation
resource_prioritization
Resource prioritization
execute_response_action
Execute response actions
approve_response_action
Approve actions
list_available_playbooks
List available playbooks
execute_playbook
Execute playbooks
rollback_action
Rollback actions
Prompts
Interactive templates invoked by user choice
No prompts
Resources
Contextual data attached and managed by the client