{"id":"bloodhound-mcp-ai","name":"BloodHound MCP AI","af_score":64.2,"security_score":52.0,"reliability_score":null,"what_it_does":"An MCP server that bridges BloodHound's Active Directory attack path analysis database to AI assistants, exposing 75+ tools for querying AD attack paths, privilege escalation routes, Kerberos vulnerabilities (Kerberoasting, AS-REP roasting), NTLM relay opportunities, and Active Directory Certificate Services (ADCS) misconfigurations via natural language. Instead of writing Cypher graph traversal queries manually, security professionals can ask an AI 'show me all paths from a Domain User to Domain Admin' and get results from their BloodHound Neo4j database. Designed for authorized penetration testing engagements where BloodHound data has already been collected from target AD environments.","best_when":"A red team or penetration tester has completed BloodHound data collection from an authorized AD environment and wants AI-assisted attack path analysis and report generation without writing Cypher.","avoid_when":"You do not have BloodHound infrastructure deployed with AD data already ingested, or you cannot guarantee written authorization for the target environment.","last_evaluated":"2026-03-01T09:50:05.329914+00:00"}