mcphub.in
Loading languages...
MC

mcp-ai-soc-sher

@akramIOT8

AI SOC Security Threat analysis using MCP Server

AI
SOC
Security
Text2SQL
SQL
Database
Threat Analysis

MCP AI SOC Sher

A powerful AI-driven Security Operations Center (SOC) Text2SQL framework based MCP Server (Local and Remote) for converting natural language Prompts to SQL queries dynamically, with integrated security threat analysis and monitoring.

Features

  • Text2SQL Conversion: Convert natural language queries to optimized SQL
  • Multiple Interfaces: Support for STDIO, SSE, and REST API
  • Security Threat Analysis: Built-in SQL query security analysis
  • Multiple Database Support: Connect to SQLite or Snowflake databases
  • Streaming Responses: Real-time query processing feedback
  • SOC Monitoring: Security Operations Center monitoring capabilities

Installation

pip install mcp-ai-soc-sher

Quick Start

# Set your OpenAI API key
import os
os.environ["OPENAI_API_KEY"] = "your-api-key-here"

# Use as local server
from mcp_ai_soc_sher.local import LocalMCPServer

server = LocalMCPServer()
server.start()

# Or run from command line
# mcp-ai-soc --type local --stdio --sse

Command Line Usage

# Run local server with STDIO interface
mcp-ai-soc --type local --stdio

# Run local server with SSE interface
mcp-ai-soc --type local --sse

# Run remote server with REST API
mcp-ai-soc --type remote

Configuration

Create a .env file with your configuration:

OPENAI_API_KEY=your_openai_api_key_here
MCP_DB_URI=sqlite:///your_database.db
MCP_SECURITY_ENABLE_THREAT_ANALYSIS=true

See the documentation for all configuration options.

Example

import json
import requests

# Query the server
response = requests.post(
    "http://localhost:8000/api/sql",
    headers={"Content-Type": "application/json", "X-API-Key": "your-api-key"},
    json={
        "query": "Find all suspicious login attempts in the last 24 hours",
        "optimize": True,
        "execute": True
    }
)

# Process the response
result = response.json()
print(f"SQL Query: {result['sql']}")
if result['results']:
    print("Results:")
    for row in result['results']:
        print(row)

Security Features

  • Rule-based and AI-powered SQL query security analysis
  • Detection of potential SQL injection attacks
  • Sensitive table access monitoring
  • Configurable security levels and actions

License

MIT License with Additional Conditions. Copyright (c) 2025 Akram Sheriff.

See LICENSE for details.

Contributing

Contributions are welcome! Please see CONTRIBUTING.md for guidelines.

# mcpServer Config

No mcpServer Config instructions provided.

# stdio 

mcp-ai-soc --type local --stdio
Transport:
stdio
sse
streamable
Language:
Python
Created: 4/30/2025
Updated: 5/7/2026
Homepage:

Recommend MCP Servers 💡

devhub-cms-mcp

devhub-cms-mcp

devhub

An MCP server that integrates DevHub CMS with Large Language Models, enabling LLMs to manage content, businesses, locations, and media within the DevHub CMS system.

2025-03-17
Python
@slinerodev/github-releases-mcp

@slinerodev/github-releases-mcp

SLineroDev

MCP server for accessing, comparing, and analyzing GitHub repository releases

2025-04-26
JavaScript
portainer-mcp

portainer-mcp

portainer

Portainer MCP server

2025-03-09
Go
@remote-mcp/client

@remote-mcp/client

ssut

A type-safe local proxy MCP server that enables remote access and centralized management of model contexts by connecting to a remote MCP implementation.

2024-12-30
TypeScript
mcptools

mcptools

posit-dev

Implements the Model Context Protocol in R, allowing AI coding assistants to run R code in user sessions and integrate R functions as tools.

2025-03-26
R
productboard-mcp

productboard-mcp

kenjihikmatullah

Integrates the Productboard API into agentic workflows via MCP, providing tools to access company, component, feature, and product data.

2025-02-26
TypeScript