luthfiarsd/AI-SOC-Agent
If you are the rightful owner of AI-SOC-Agent and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to dayong@mcphub.com.
AI-SOC-Agent is an MCP Server designed for cybersecurity analysis using the HoneyDB API, providing tools for threat intelligence, CVE analysis, payload analysis, and IP reputation checking.
Tools
Functions exposed to the LLM to take actions
find_ips_exploiting_cve
Search for IPs attempting to exploit a specific CVE.
check_cve_history_by_ip
View the history of CVEs attempted by a specific IP.
get_monthly_payload_history
Retrieve the history of malicious payloads captured in a specific month.
analyze_payload_hash
Analyze details of a payload based on its hash.
scan_threat_feeds
Scan an IP against various threat intelligence databases.
get_bad_hosts
Retrieve a list of malicious IPs detected in the last 24 hours.
get_active_services
View active network services/protocols under attack.
check_ip_details
Perform a deep check on an IP (Geolocation, ASN, Threat Lists).
check_internet_scanner
Detect if an IP is a known internet scanner.
Prompts
Interactive templates invoked by user choice
No prompts
Resources
Contextual data attached and managed by the client