Intelix IOC Analysis MCP (Preview)
Sophos Intelix MCP connector empowers Copilot Studio agents with threat intelligence from Sophos X-Ops. Cyber security related agentic applications can gain instant access to file reputation scoring, malware analysis, URL categorization, and IP assessment. Six specialized tools include behavioral analysis, IOC extraction, and artifact storage. Requires Copilot Studio access and Sophos ID account.
This connector is available in the following products and regions:
| Service | Class | Regions |
|---|---|---|
| Copilot Studio | Premium | All Power Automate regions except the following: - US Government (GCC) - US Government (GCC High) - China Cloud operated by 21Vianet - US Department of Defense (DoD) |
| Logic Apps | Standard | All Logic Apps regions except the following: - Azure Government regions - Azure China regions - US Department of Defense (DoD) |
| Power Apps | Premium | All Power Apps regions except the following: - US Government (GCC) - US Government (GCC High) - China Cloud operated by 21Vianet - US Department of Defense (DoD) |
| Power Automate | Premium | All Power Automate regions except the following: - US Government (GCC) - US Government (GCC High) - China Cloud operated by 21Vianet - US Department of Defense (DoD) |
| Contact | |
|---|---|
| Name | Intelix |
| URL | https://www.sophos.com/intelix/copilot |
| intelix@sophos.com |
| Connector Metadata | |
|---|---|
| Publisher | Sophos Ltd. |
| Website | https://www.sophos.com/intelix/copilot |
| Privacy policy | https://www.sophos.com/en-us/legal/sophos-group-privacy-notice |
| Categories | Security;IT Operations |
Sophos Intelix MCP Connector for Microsoft Copilot Studio
Sophos Intelix MCP connector empowers Copilot Studio agents with threat intelligence from Sophos X-Ops. Cyber security related agentic applications can gain instant access to file reputation scoring, malware analysis, URL categorization, and IP assessment. Six specialized tools include behavioral analysis, IOC extraction, and artifact storage. Requires Copilot Studio access and Sophos ID account.
Quick Start
1. Create Sophos ID
Register at https://id.sophos.com/web/register/ if you don't have a Sophos ID.
2. Get API Key
Generate your API key at https://ai.intelix.sophos.com/get-started-with-copilot-studio
Save your API key securely.
3. Add Connector
- Open Microsoft Copilot Studio
- Create or use an existing agent and add a tool (see references)
- Search for "Sophos Intelix MCP" in the MCP Connectors
- Enter your API key or
x-api-keyas the connection details
Available Tools
get_static_file_report- File analysisget_dynamic_file_report- Behavioral analysislookup_file_reputation- File reputationget_static_url_report- URL analysislookup_url_category- URL categorizationlookup_ip_category- IP reputationsmoke_test- Connectivity test
Documentation
- Copilot Studio Setup: https://ai.intelix.sophos.com/docs?content=quick_start_guide__security_copilot_agent
- Microsoft MCP Docs: https://learn.microsoft.com/en-us/microsoft-copilot-studio/mcp-add-components-to-agent
- API Key Management: https://ai.intelix.sophos.com/api-keys
Creating a connection
The connector supports the following authentication types:
| Default | Parameters for creating connection. | All regions | Not shareable |
Default
Applicable: All regions
Parameters for creating connection.
This is not shareable connection. If the power app is shared with another user, another user will be prompted to create new connection explicitly.
| Name | Type | Description | Required |
|---|---|---|---|
| x-api-key | securestring | The x-api-key for this api | True |
Throttling Limits
| Name | Calls | Renewal Period |
|---|---|---|
| API calls per connection | 100 | 60 seconds |
Actions
| Health Check |
Check the health status of the service |
| Intelix IOC Analysis |
File, Url and IP threat analysis services with reputation lookup, static and dynamic capabilities |
Health Check
Check the health status of the service
Intelix IOC Analysis
File, Url and IP threat analysis services with reputation lookup, static and dynamic capabilities