com.microsoft/sentinel-data-exploration

Find relevant security data from Sentinel data lake for building effective agents. More:aka.ms/s/de

2 0 tools GitHub

No known CVEs

No license

Maintained

Last commit 125d ago

Works with most clients

Transport: http

0 tools

Grade F

Edit this pageView history

Security Analytics

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktophttp · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "com-microsoft-sentinel-data-exploration": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/com-microsoft-sentinel-data-exploration)](https://mcppedia.org/s/com-microsoft-sentinel-data-exploration)

Read me

What com.microsoft/sentinel-data-exploration does

INSTALL ![Install Microsoft Sentinel Data Exploration MCP in VS Code Insiders](https://vscode.dev/redirect?url=vscode-insiders:mcp/install?%7B%22name%22%3A%22microsoft-sentinel-data-exploration%22%2C%22url%22%3A%22https%3A%2F%2Fsentinel.micros

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

25/100across 5 weighted dimensions

How we score →

0255075100

−75

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is com.microsoft/sentinel-data-exploration safe to use?: com.microsoft/sentinel-data-exploration has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install com.microsoft/sentinel-data-exploration?: com.microsoft/sentinel-data-exploration can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with com.microsoft/sentinel-data-exploration?: com.microsoft/sentinel-data-exploration is compatible with claude-desktop, cursor, claude-code. It uses http transport.
Is com.microsoft/sentinel-data-exploration actively maintained?: com.microsoft/sentinel-data-exploration is less actively maintained — last commit was 125 days ago. It has 2 GitHub stars.

Similar servers

Others in security / analytics

View all →

Observability Mcp95

MCP Server for GCP environment for interacting with various Observability APIs.

790 10

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

8.7k 3

io.github.rezmeplxrf/insightsentry_mcp91

MCP server for InsightSentry financial data API - market data, options, screeners, and more

MCP Security Weekly

Get CVE alerts and security updates for com.microsoft/sentinel-data-exploration and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

🧩 Use cases

Password-Spray Hunt Build security agents that autonomously select relevant sign-in tables, aggregates login attempts by user and IP, and flags patterns consistent with password-spray behavior—like low-frequency attempts over several months across many accounts.

Impossible Travel Check Build security agents that correlate sign-in events by user, calculates geodistance and time gaps between logins, and flags cases where travel speed exceeds realistic thresholds, suggesting credential compromise.

Multi-factor authorization failures Build security agents that analyzes multi-factor auth logs to detect spikes in failure rates, clustering by user, IP, or time window, and surfaces anomalies that deviate from baseline behavior over long periods.

Dormant Account wake-up Build security agents that based on inactivity thresholds, scans for accounts with long silence followed by recent activity, and builds a timeline showing when and how these accounts re-engaged.

Frequently Asked Questions

Is com.microsoft/sentinel-data-exploration safe to use?

com.microsoft/sentinel-data-exploration has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install com.microsoft/sentinel-data-exploration?

com.microsoft/sentinel-data-exploration can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with com.microsoft/sentinel-data-exploration?

com.microsoft/sentinel-data-exploration is compatible with claude-desktop, cursor, claude-code. It uses http transport.

Is com.microsoft/sentinel-data-exploration actively maintained?

com.microsoft/sentinel-data-exploration is less actively maintained — last commit was 125 days ago. It has 2 GitHub stars.

Microsoft Sentinel Data Exploration

INSTALL

The data exploration tool collection in the Microsoft Sentinel MCP server lets you search for relevant tables and retrieve data from Microsoft Sentinel's data lake using natural language.

🌐 The Microsoft Sentinel Data Exploration MCP Server Endpoint

The Microsoft Sentinel Data Exploration MCP Server is accessible to any IDE, agent, or tool that supports the Model Context Protocol (MCP). Any compatible client can connect to the following remote MCP endpoint:

https://sentinel.microsoft.com/mcp/data-exploration

Authentication OAuth 2.0

🧩 Use cases

📚 Learn more

Explore Microsoft Sentinel data lake with data exploration collection