https://github.com/fr0gger/MCP_Security
This is a repository to experiment with MCP for security
https://github.com/fr0gger/MCP_Security
Last synced: 25 days ago
JSON representation
This is a repository to experiment with MCP for security
- Host: GitHub
- URL: https://github.com/fr0gger/MCP_Security
- Owner: fr0gger
- Created: 2024-11-27T09:18:13.000Z (5 months ago)
- Default Branch: main
- Last Pushed: 2025-01-22T23:09:11.000Z (3 months ago)
- Last Synced: 2025-01-22T23:26:22.742Z (3 months ago)
- Language: Python
- Size: 6.84 KB
- Stars: 5
- Watchers: 1
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-mcp-servers - ORKL MCP Server - MCP server for querying the ORKL API. This server provides tools for fetching threat reports, analyzing threat actors, and retrieving intelligence sources. (Legend / 🔒 <a name="security"></a>Security)
- awesome-mcp-servers - ORKL MCP Server - MCP server for querying the ORKL API. This server provides tools for fetching threat reports, analyzing threat actors, and retrieving intelligence sources. (Legend / 🔒 <a name="security"></a>Security)
- awesome-mcp-servers - ORKL MCP Server - This is a repository to experiment with MCP for security (Table of Contents / Security)
- awesome-mcp-servers - ORKL MCP Server - This is a repository to experiment with MCP for security (Table of Contents / Security)
README
# ORKL MCP Server
A full write-up can be found here: https://blog.securitybreak.io/building-a-threat-intelligence-genai-reporter-with-orkl-and-claude-a0ae2e969693
A Model Context Protocol (MCP) server for querying the ORKL API. This server provides tools for fetching and analyzing threat reports, threat actors, and sources. It integrates smoothly with MCP-compatible applications.
---
# Quick Install
Edit or create the file /Users/user/Library/Application Support/Claude/claude_desktop_config.json
```
{
"mcpServers": {
"orkl": {
"command": "uv",
"args": [
"--directory",
"/MyMCP/mcptest/orkl",
"run",
"orkl"
]
}
}
}
```
---
# Tools
## Report Tools
### Fetch Latest Threat Reports
- **Name**: `fetch_latest_threat_reports`
- **Description**: Fetch recent threat reports with their titles and IDs.
- **Parameters**: None
### Fetch Threat Report Details
- **Name**: `fetch_threat_report_details`
- **Description**: Retrieve detailed information for a specific threat report by ID.
- **Parameters**:
- `report_id` (required): The ID of the threat report.
## Threat Actor Tools
### Fetch Threat Actors
- **Name**: `fetch_threat_actors`
- **Description**: Fetch a list of known threat actors with their IDs and names.
- **Parameters**: None
### Fetch Threat Actor Details
- **Name**: `fetch_threat_actor_details`
- **Description**: Retrieve detailed information for a specific threat actor by ID.
- **Parameters**:
- `actor_id` (required): The ID of the threat actor.
## Source Tools
### Fetch Sources
- **Name**: `fetch_sources`
- **Description**: Fetch a list of sources used in threat intelligence.
- **Parameters**: None
### Fetch Source Details
- **Name**: `fetch_source_details`
- **Description**: Retrieve detailed metadata for a specific source by ID.
- **Parameters**:
- `source_id` (required): The ID of the source.