-
Notifications
You must be signed in to change notification settings - Fork 15
Add a configuration file for Microsoft Sentinel Graph MCP tool #99
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merged
Merged
Changes from all commits
Commits
Show all changes
5 commits
Select commit
Hold shift + click to select a range
c77aa99
Add a configuration file for Microsoft Sentinel Graph MCP tool
GuoyuHao 2061fac
Update the summary and description to make it shorter and clean
GuoyuHao d7f4ee8
Update the key of security scheme to avoid conflict
GuoyuHao 277e9d3
Add one more use case to cover exposure perimeter scenario
GuoyuHao b7ccefb
Update the documentation link
GuoyuHao File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,51 @@ | ||
| { | ||
| "name": "ms-sentinel-graph", | ||
| "title": "Microsoft Sentinel Graph", | ||
| "summary": "The Graph MCP tool enables natural-language analysis of Microsoft Sentinel graphs to explore relationships and uncover security insights.", | ||
| "description": "The Graph MCP tool enables natural-language analysis of Microsoft Sentinel graphs to explore relationships and uncover security insights. Learn more: https://aka.ms/mcp/sentinel-graph", | ||
| "vendor": "Microsoft", | ||
| "kind": "mcp", | ||
| "remote": "https://sentinel.microsoft.com/mcp/graph", | ||
| "icon": "https://cdn.jsdelivr.net/gh/Azure/MCP/community/registry/icons/Sentinel.svg", | ||
| "externalDocumentation": { | ||
| "title": "Microsoft Sentinel Graph documentation", | ||
| "url": "https://aka.ms/mcp/sentinel-graph" | ||
| }, | ||
| "license": { | ||
| "name": "Microsoft License", | ||
| "url": "https://www.microsoft.com/licensing/terms/welcome/welcomepage" | ||
| }, | ||
| "useCases": [ | ||
| { | ||
| "name": "Exposure-to-Critical Asset Path Analysis", | ||
| "description": "Build security agents that discover and enumerate realistic attack paths from exposed or vulnerable entry points—such as internet-facing virtual machines or compromised identities—to critical assets like databases, Key Vaults, or sensitive storage accounts, using walkable paths to focus on reachable risks." | ||
| }, | ||
| { | ||
| "name": "Compromised Entity Blast Radius Analysis", | ||
| "description": "Build security agents that assess the potential impact of a compromised user, managed identity, or virtual machine by traversing connected permissions, identities, and resources to determine how far an attacker could move and which assets could be affected." | ||
| }, | ||
| { | ||
| "name": "Exposure Perimeter Mapping", | ||
| "description": "Build security agents that identify the exposure perimeter of a resource, identity, or service by finding all incoming access paths from external or less-trusted entities, highlighting how attackers could reach the target and where defensive controls can be applied." | ||
| } | ||
| ], | ||
| "categories": "Security", | ||
| "tags": ["security", "sentinel", "graph"], | ||
| "supportContactInfo": { | ||
| "name": "Microsoft Customer Support", | ||
| "email": "support@microsoft.com"}, | ||
| "versionName": "original", | ||
| "securitySchemes": { | ||
| "sentinelGraphOAuth": { | ||
| "type": "oauth2", | ||
| "description": "Authenticate with Microsoft Sentinel using OAuth2 authorization code flow with PKCE support.", | ||
| "flows": ["authorizationCode"], | ||
| "authorizationUrl": "https://login.microsoftonline.com", | ||
| "tokenUrl": "https://login.microsoftonline.com", | ||
| "scopes": [] | ||
| } | ||
| }, | ||
| "visibility": "true", | ||
| "authSchemas":["OAuth2"], | ||
| "audience": "4500ebfb-89b6-4b14-a480-7f749797bfcd" | ||
| } | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.