Is BloodHound MCP AI safe to use?

BloodHound MCP AI has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install BloodHound MCP AI?

BloodHound MCP AI can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with BloodHound MCP AI?

BloodHound MCP AI is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is BloodHound MCP AI actively maintained?

BloodHound MCP AI is less actively maintained — last commit was 350 days ago. It has 353 GitHub stars.

BloodHound MCP AI

Name: BloodHound MCP AI
Author: MorDavid

by MorDavid

BloodHound-MCP-AI is integration that connects BloodHound with AI through Model Context Protocol, allowing security professionals to analyze Active Directory attack paths using natural language instead of complex Cypher queries.

353 0 tools GitHub

No known CVEs

No license

Stale

Last commit 350d ago

Works with most clients

Transport: stdio, sse, http

0 tools

Grade F

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "bloodhound-mcp-ai": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/bloodhound-mcp-ai)](https://mcppedia.org/s/bloodhound-mcp-ai)

Read me

What BloodHound MCP AI does

BloodHound-MCP is a powerful integration that brings the capabilities of Model Context Procotol (MCP) Server to BloodHound, the industry-standard tool for Active Directory security analysis. This integration allows you to analyze BloodHound data using natural language, making complex Active Directory attack path analysis accessible to everyone.

Test This Server

This server supports HTTP transport. Be the first to test it — help the community know if it works.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

30/100across 5 weighted dimensions

How we score →

0255075100

−70

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is BloodHound MCP AI safe to use?: BloodHound MCP AI has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install BloodHound MCP AI?: BloodHound MCP AI can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with BloodHound MCP AI?: BloodHound MCP AI is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is BloodHound MCP AI actively maintained?: BloodHound MCP AI is less actively maintained — last commit was 350 days ago. It has 353 GitHub stars.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

8.7k 3

Iam Policy Autopilot90

IAM Policy Autopilot is an open source static code analysis tool that helps you quickly create baseline AWS IAM policies that you can refine as your application evolves. This tool is available as a command-line utility and MCP server for use within AI coding assistants for quickly building IAM policies.

361 1

io.github.peacprotocol/peac90

Signed receipts for agent, API, and MCP interactions. Portable and offline-verifiable.

11 5

MCP Security Weekly

Get CVE alerts and security updates for BloodHound MCP AI and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "bloodhound-mcp-ai": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/bloodhound-mcp-ai)](https://mcppedia.org/s/bloodhound-mcp-ai)

Read me

What BloodHound MCP AI does

Test This Server

This server supports HTTP transport. Be the first to test it — help the community know if it works.

README

BloodHound-MCP

Model Context Protocol (MCP) Server for BloodHound

🥇 First-Ever BloodHound AI Integration!
This is the first integration that connects BloodHound with AI through MCP, originally announced here.

🔍 What is BloodHound-MCP?

BloodHound-MCP combines the power of:

BloodHound: Industry-standard tool for visualizing and analyzing Active Directory attack paths
Model Context Protocol (MCP): An open protocol for creating custom AI tools, compatible with various AI models
Neo4j: Graph database used by BloodHound to store AD relationship data

With over 75 specialized tools based on the original BloodHound CE Cypher queries, BloodHound-MCP allows security professionals to:

Query BloodHound data using natural language
Discover complex attack paths in Active Directory environments
Assess Active Directory security posture more efficiently
Generate detailed security reports for stakeholders

📱 Community

Join our Telegram channel for updates, tips, and discussion:

Telegram: root_sec

🌟 Star History

✨ Features

Natural Language Interface: Query BloodHound data using plain English
Comprehensive Analysis Categories:
- Domain structure mapping
- Privilege escalation paths
- Kerberos security issues (Kerberoasting, AS-REP Roasting)
- Certificate services vulnerabilities
- Active Directory hygiene assessment
- NTLM relay attack vectors
- Delegation abuse opportunities
- And much more!

📋 Prerequisites

BloodHound 4.x+ with data collected from an Active Directory environment
Neo4j database with BloodHound data loaded
Python 3.8 or higher
MCP Client

🔧 Installation

Clone this repository:

git clone https://github.com/your-username/MCP-BloodHound.git
cd MCP-BloodHound

Install dependencies:
```
pip install -r requirements.txt
```

Configure the MCP Server

"mcpServers": {
    "BloodHound-MCP": {
        "command": "python",
        "args": [
            "<Your_Path>\\BloodHound-MCP.py"
        ],
        "env": {
            "BLOODHOUND_URI": "bolt://localhost:7687",
            "BLOODHOUND_USERNAME": "neo4j",
            "BLOODHOUND_PASSWORD": "bloodhoundcommunityedition"
        }
    }
}

🚀 Usage

Example queries you can ask through the MCP:

"Show me all paths from kerberoastable users to Domain Admins"
"Find computers where Domain Users have local admin rights"
"Identify Domain Controllers vulnerable to NTLM relay attacks"
"Map all Active Directory certificate services vulnerabilities"
"Generate a comprehensive security report for my domain"
"Find inactive privileged accounts"
"Show me attack paths to high-value targets"

🔐 Security Considerations

This tool is designed for legitimate security assessment purposes. Always:

Obtain proper authorization before analyzing any Active Directory environment
Handle BloodHound data as sensitive information
Follow responsible disclosure practices for any vulnerabilities discovered

📜 License

This project is licensed under the MIT License - see the LICENSE file for details.

🙏 Acknowledgments

The BloodHound team for creating an amazing Active Directo

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

30/100across 5 weighted dimensions

How we score →

0255075100

−70

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is BloodHound MCP AI safe to use?: BloodHound MCP AI has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install BloodHound MCP AI?: BloodHound MCP AI can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with BloodHound MCP AI?: BloodHound MCP AI is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is BloodHound MCP AI actively maintained?: BloodHound MCP AI is less actively maintained — last commit was 350 days ago. It has 353 GitHub stars.