Code snippets to reproduce MCP tool poisoning attacks.
☆193Apr 10, 2025Updated 10 months ago
Alternatives and similar repositories for mcp-injection-experiments
Users that are interested in mcp-injection-experiments are comparing it to the libraries listed below
Sorting:
- Security scanner for AI agents, MCP servers and agent skills.☆1,699Mar 2, 2026Updated last week
- MCPSafetyScanner - Automated MCP safety auditing and remediation using Agents. More info: https://www.arxiv.org/abs/2504.03767☆169Apr 10, 2025Updated 10 months ago
- Guardrails for secure and robust agent development☆395Jan 12, 2026Updated last month
- Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)☆13Oct 3, 2024Updated last year
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Jul 24, 2025Updated 7 months ago
- CVE-Bench: A Benchmark for AI Agents’ Ability to Exploit Real-World Web Application Vulnerabilities☆167Jan 14, 2026Updated last month
- A comprehensive security checklist for MCP-based AI tools. Built by SlowMist to safeguard LLM plugin ecosystems.☆809Apr 28, 2025Updated 10 months ago
- A collection of prompt injection mitigation techniques.☆27Aug 19, 2023Updated 2 years ago
- 参考taviso的代码逆向一下mpengine.dll☆20Jun 30, 2022Updated 3 years ago
- What's the Red Team doing to my Linux Box? - BSides Vienna 2024☆17Nov 23, 2024Updated last year
- datacon比赛2024年漏洞分析赛道解题框架与运行镜像压缩包☆182Jun 10, 2025Updated 8 months ago
- ☆23Apr 6, 2019Updated 6 years ago
- Damn Vulnerable MCP Server☆1,260Dec 8, 2025Updated 3 months ago
- Semgrep Pro Rules to ensure code using LLMs is following best practices☆45Updated this week
- Python tool for exploiting CVE-2021-35616☆11Dec 3, 2021Updated 4 years ago
- COVA - A static analysis tool to compute path conditions☆40Mar 2, 2026Updated last week
- 🔥🔒 Awesome MCP (Model Context Protocol) Security 🖥️☆661Updated this week
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…☆123Dec 14, 2025Updated 2 months ago
- ☆28Feb 6, 2024Updated 2 years ago
- ☆11Jun 7, 2025Updated 9 months ago
- ☆26Sep 3, 2025Updated 6 months ago
- OWASP Web Security Testing Guide RAG system with ChromaDB, MCP for Claude Code☆17Dec 11, 2025Updated 2 months ago
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆251Mar 1, 2026Updated last week
- PoC for CVE-2021-43557☆22Nov 22, 2021Updated 4 years ago
- A tool that checks if a TorchServe instance is vulnerable to CVE-2023-43654☆39Apr 21, 2024Updated last year
- static sites for blog.orange.tw☆23Dec 31, 2025Updated 2 months ago
- Scan A2A agents for potential threats and security issues☆123Feb 16, 2026Updated 3 weeks ago
- ☆18Nov 6, 2024Updated last year
- ☆13Feb 9, 2022Updated 4 years ago
- Code for the API, workload execution, and agents underlying the LLMail-Inject Adpative Prompt Injection Challenge☆19Mar 1, 2026Updated last week
- Exploit for CVE-2024-4883☆11Jul 8, 2024Updated last year
- ☆375Sep 20, 2025Updated 5 months ago
- the LLM vulnerability scanner☆7,164Updated this week
- Exploit for Microsoft SharePoint 2019☆13Dec 28, 2023Updated 2 years ago
- This is the official repository for the ICLR 2025 accepted paper Badrobot: Manipulating Embodied LLMs in the Physical World.☆41Jun 26, 2025Updated 8 months ago
- PWNable pyjail☆13Jan 13, 2025Updated last year
- MCP Snitch is a macOS application that intercepts and monitors MCP server communications, providing security analysis, access control, an…☆93Oct 14, 2025Updated 4 months ago
- Crashbench is a LLM benchmark to measure bug-finding and reporting capabilities of LLMs☆14Updated this week
- awd attack framework,Django + Mysql☆16Feb 8, 2025Updated last year