MCP-GraphSecurityIncidents

MCP-GraphSecurityIncidents

3.4

If you are the rightful owner of MCP-GraphSecurityIncidents and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.

The Microsoft Graph Security MCP Server is a Model Context Protocol server implementation designed to interface with Microsoft Graph Security APIs, optimizing interactions for AI assistants.

The Microsoft Graph Security MCP Server is a sophisticated implementation of the Model Context Protocol, specifically designed to interface with Microsoft Graph Security APIs. This server facilitates the exposure of security-related data, such as alerts and incidents, to MCP-compatible AI assistants. By leveraging intelligent field selection through native Graph API `$select` parameters, the server significantly reduces response sizes and optimizes token usage. This ensures efficient and effective communication between AI systems and the Microsoft Graph Security infrastructure. The server architecture is built to support universal tools that work consistently across various security entity types, enhancing its versatility and applicability in diverse security contexts. Additionally, the server incorporates advanced features like intent detection, TTL context caching, and robust authentication mechanisms, making it a comprehensive solution for managing security data interactions.

Features

  • Universal Tools: Provides 10 tools that function consistently across different security entity types.
  • Field Selection: Utilizes Microsoft Graph `$select` parameters for automatic optimization.
  • Intent Detection: Analyzes queries to determine the appropriate level of response detail.
  • TTL Context Caching: Reduces redundant context provision through time-to-live settings.
  • Authentication: Supports Azure AD app credentials and managed identity for secure access.

Tools

  1. graph_entity_list

    List security entities

  2. graph_entity_get

    Get specific entity

  3. graph_entity_update

    Update entity properties

  4. graph_entity_comment

    Add comment to entity

  5. graph_entity_navigate

    Navigate entity relationships

  6. graph_entity_list_next

    Get next page of results

  7. graph_entity_schema

    Get entity schema info

  8. context_discover

    Discover entity capabilities

  9. context_stats

    Get context usage statistics

  10. context_configure

    Configure context behavior