A Model Context Protocol (MCP) server that enables Large Language Models to interact with BloodHound Community Edition data through Claude Desktop. This tool allows security professionals to query and analyze Active Directory attack paths using natural language.
This MCP server provides a comprehensive interface to BloodHound Community Edition's REST API, not just a wrapper around Cypher queries. The implementation includes:
- Complete REST API Integration: Utilizes BloodHound CE's full REST API endpoints (
/api/v2/domains,/api/v2/users,/api/v2/groups, etc.) - Structured Data Access: Leverages purpose-built API endpoints for users, computers, groups, OUs, and GPOs
- Advanced Functionality: Includes ADCS analysis, graph search, shortest path algorithms, and edge composition analysis
- Authentication: Implements BloodHound's signature-based authentication system
While Cypher queries are powerful, this MCP goes beyond simple query execution:
- Structured API Responses: Returns properly formatted, paginated data with counts and metadata
- Built-in Relationships: Utilizes BloodHound's pre-computed relationship mappings
- Error Handling: Proper HTTP status code handling and meaningful error messages
- Performance: Leverages BloodHound's optimized endpoints rather than raw graph traversal
- Completeness: Access to administrative rights, sessions, group memberships, and other complex relationships through dedicated endpoints
As a proper Model Context Protocol implementation:
- Tool Discoverability: LLM automatically discovers available analysis capabilities
- Type Safety: Strongly typed parameters and responses
- Contextual Help: Built-in documentation and examples for the LLM
- Resource Access: Provides Cypher query examples and patterns as MCP resources
- Domain Analysis: Query domain information, users, groups, computers, and organizational structure
- User Intelligence: Analyze user privileges, group memberships, sessions, and administrative rights
- Group Analysis: Examine group memberships, controllers, and privilege relationships
- Computer Assessment: Investigate computer privileges, sessions, and administrative access
- Organizational Units: Explore OU structure and contained objects
- Group Policy Objects: Analyze GPO assignments and controllers
- Certificate Services: Investigate ADCS infrastructure and certificate templates
- Custom Cypher Queries: Execute advanced Neo4j queries for complex analysis
- Graph Search: Find shortest paths between security principals
- Natural language querying of BloodHound data
- Attack path visualization and analysis
- Privilege escalation identification
- Cross-domain relationship analysis
- Kerberoasting target identification
- Administrative relationship mapping
- Python 3.11+
- uv (Python package manager)
- Claude Desktop
- BloodHound Community Edition instance (accessible via network)
- BloodHound data loaded (from SharpHound, BloodHound.py, etc.)
- BloodHound API credentials (Token ID and Token Key)
-
Clone the repository
git clone <repository-url> cd bloodhound-mcp
-
Install dependencies
uv sync
-
Configure environment variables
Create a
.envfile in the project root:BLOODHOUND_DOMAIN=your-bloodhound-instance.domain.com BLOODHOUND_TOKEN_ID=your-token-id BLOODHOUND_TOKEN_KEY=your-token-key
- Open Claude Desktop and navigate to Settings → Developer Tools
- Add the following configuration to your
claude_desktop_config.json:
{
"mcpServers": {
"bloodhound_mcp": {
"command": "uv",
"args": [
"--directory",
"/path/to/your/bloodhound-mcp",
"run",
"main.py"
]
}
}
}- Replace
/path/to/your/bloodhound-mcpwith the actual path to your installation - Restart Claude Desktop
- Log into your BloodHound CE instance
- Navigate to Administration → API Tokens
- Create a new token with appropriate permissions
- Note the Token ID and Token Key for your
.envfile
- Start a new conversation in Claude Desktop
- Look for the hammer icon (🔨) indicating MCP tools are available
- Begin by asking about your domains:
What domains are available in BloodHound?
Domain Reconnaissance:
Show me all users in the DOMAIN.LOCAL domain
What computers are in the domain?
Find all Domain Admins
User Analysis:
What administrative rights does john.doe@domain.local have?
Show me all sessions for the user administrator
What groups is this user a member of?
Privilege Escalation:
Find all kerberoastable users
Show me users with DCSync privileges
What computers can I RDP to from this user?
Advanced Analysis:
Run a cypher query to find all paths to Domain Admin
Show me the shortest path from user A to user B
Find all users with SPN set
This tool processes BloodHound data through Claude Desktop, which means Active Directory information is transmitted to Anthropic's servers. Do not use this tool with production or sensitive BloodHound data.
- Training environments (GOAD, DetectionLab, etc.)
- Demonstration purposes
- Learning and research
- Non-production domain analysis
- Use isolated lab environments
- Sanitize data before analysis
- Consider local LLM alternatives for sensitive environments
- Regular token rotation for BloodHound API access
Run the test suite to verify functionality:
# Basic functionality tests
uv run pytest tests/test_basics.py -v
# HTTP request testing
uv run pytest tests/test_bloodhound_http.py -v
# MCP tools testing
uv run pytest tests/test_mcp_tools.py -v
# Integration tests (requires running BloodHound instance)
BLOODHOUND_INTEGRATION_TESTS=1 uv run pytest tests/test_integration.py -vContributions are welcome! This project is designed for learning and experimentation with MCPs and BloodHound APIs.
- Fork the repository
- Create a feature branch
- Make your changes
- Add tests for new functionality
- Run the test suite
- Submit a pull request
- Enhanced attack path analysis
- Azure Active Directory support
- Advanced graph visualizations
- Asset management integration
- Local LLM compatibility
- Additional ADCS attack scenarios
This project is licensed under the GNU General Public License v3.0 - see the