# Adding MCP Tools MCP tools follow a **descriptor + handler** pattern. Each tool has metadata in the catalog and an implementation in the handler. ## Steps ### 1. Add Tool Descriptor in `McpToolCatalog` Define the tool's metadata: ```kotlin ToolDescriptor( id = "my_tool", title = "My Tool Title", description = "What this tool does.", category = "MyCategory", unsafe = false, // true if it modifies state or sends traffic defaultEnabled = true, // whether it's enabled by default proOnly = false // true if it requires Burp Pro ) ``` ### 2. Implement Handler in `McpTools` Add a handler function that: * Receives the tool input (parsed from JSON). * Accesses Burp APIs via `McpToolContext`. * Returns a result string or structured response. ```kotlin "my_tool" -> { val param = input.getString("paramName") // Use ctx.api to access Burp APIs val result = ctx.api.someOperation(param) McpToolResult.text(result) } ``` ### 3. Add Input Schema Define the JSON Schema for tool input parameters. This tells MCP clients what parameters the tool accepts: ```kotlin "my_tool" to buildJsonObject { put("type", "object") putJsonObject("properties") { putJsonObject("paramName") { put("type", "string") put("description", "Description of this parameter") } } putJsonArray("required") { add("paramName") } } ``` ### 4. Add Safety Gating (If Needed) If your tool is marked as `unsafe`: * It will be disabled by default. * Users must enable "Unsafe Tools" in settings to use it. * Consider adding scope checks to prevent operations on out-of-scope targets. ### 5. Privacy Integration If your tool returns sensitive data: * Use the `McpToolContext.privacyMode` to check the active privacy level. * Apply redaction through the context's redaction pipeline before returning results. * Example: The `cookie_jar_get` tool redacts cookie values unless privacy mode is OFF. ## Tool Categories Existing categories for reference: * **Burp Control**: Proxy intercept, task engine state. * **Collaborator**: Payload generation and polling. * **Config**: Project/user options. * **Editor**: Message editor get/set. * **Extension**: Status information. * **History**: Proxy HTTP/WebSocket history. * **Issues**: Issue creation. * **Requests**: HTTP requests, Repeater, Intruder, parsing. * **Scanner**: Audit, crawl, reports (Pro only). * **Scope**: URL scope management. * **Site Map**: Site map browsing and search. * **Utilities**: Encoding, hashing, JWT, compression. ## Testing * Test your tool handler with mock `McpToolContext` objects. * Verify safety gating: ensure the tool is blocked when unsafe tools are disabled. * Verify privacy integration: ensure data is redacted appropriately in STRICT and BALANCED modes. * Test edge cases: empty input, invalid parameters, missing Burp Pro features. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://burp-ai-agent.six2dez.com/developer/adding-mcp-tools.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.