A demonstration toolkit revealing potential security vulnerabilities in MCP (Model Context Protocol) frameworks through data poisoning, JSON injection, function overriding, and cross-MCP call attacks, exposing AI security issues while providing defense recommendations. For educational and research purposes only.
☆94Jul 6, 2025Updated 8 months ago
Alternatives and similar repositories for MasterMCP
Users that are interested in MasterMCP are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A low-entropy shellcode executor that encodes shellcode bytes into common English words, with anti-debugging capabilities.☆22Aug 10, 2025Updated 7 months ago
- Code from the paper: Neurlux: Dynamic Malware Analysis Without Feature Engineering☆13Dec 27, 2020Updated 5 years ago
- Java bytecode line number restoration tool☆139Aug 31, 2025Updated 6 months ago
- A comprehensive security checklist for MCP-based AI tools. Built by SlowMist to safeguard LLM plugin ecosystems.☆821Apr 28, 2025Updated 11 months ago
- Chrome-RCE-Poc☆91Aug 24, 2024Updated last year
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Java漏洞调试分析集合☆91Mar 11, 2024Updated 2 years ago
- 【Hello-CTF labs】新手向的ssrf靶场,从协议,场景,绕过等多个ssrf攻击的基础维度展开。☆57Mar 22, 2025Updated last year
- ☆11May 25, 2024Updated last year
- ☆18Apr 4, 2021Updated 4 years ago
- [ALL IN ONE] Everything that I shared to public about Cloud Security is here.☆61Apr 19, 2025Updated 11 months ago
- 基于 bkcrack 的可视化压缩包明文攻击工具☆56Mar 31, 2025Updated 11 months ago
- proxy/tunnel everything for red team!☆248Mar 18, 2026Updated last week
- Python3 Based gopherus, completely refactored and added more feature.☆71Nov 29, 2024Updated last year
- ☆14Jul 18, 2022Updated 3 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- 【Hello-CTF labs】试试用CTF的方式来学习AWD?☆84Jan 22, 2026Updated 2 months ago
- MAB-Malware an open-source reinforcement learning framework to generate AEs for PE malware. We model this problem as a classic multi-arme…☆53Apr 15, 2025Updated 11 months ago
- 【Hello-CTF labs】一个ssrf的综合靶场,包含RCE,SQL注入,Tomcat,Redis,MySQL提权等ssrf攻击场景☆79Mar 18, 2025Updated last year
- Code snippets to reproduce MCP tool poisoning attacks.☆191Apr 10, 2025Updated 11 months ago
- 用友漏洞综合利用工具☆265Nov 9, 2024Updated last year
- Place for random PoCs☆18May 21, 2020Updated 5 years ago
- ☆28Jun 7, 2022Updated 3 years ago
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆508Jan 12, 2026Updated 2 months ago
- MCPSafetyScanner - Automated MCP safety auditing and remediation using Agents. More info: https://www.arxiv.org/abs/2504.03767☆172Apr 10, 2025Updated 11 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A Online PHP FilterChain Generator.☆17Aug 3, 2024Updated last year
- ☆33Jul 26, 2024Updated last year
- ☆16Jul 31, 2024Updated last year
- 使用Docker一键制作Vol2取证需要的Profile☆22Aug 31, 2025Updated 6 months ago
- ☆22Mar 24, 2025Updated last year
- 通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩,可以做一些破解、加密验证的绕过等操作☆118Jun 18, 2024Updated last year
- Python exploit of cve-2020-7247☆25Feb 19, 2020Updated 6 years ago
- The function of the tool is to inject JNDI through LDAP☆28Dec 21, 2021Updated 4 years ago
- JavaSec☆47Mar 18, 2024Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- PHP代码审计案例-1000PHP☆27Aug 20, 2024Updated last year
- Go SDK of Malicious Wallet Address Database☆11Apr 9, 2018Updated 7 years ago
- Implementation of mixed language project compilation via Bazel platform.☆17Oct 10, 2020Updated 5 years ago
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Oct 13, 2024Updated last year
- Note driven hacking weaponized vscode project guide. 笔记驱动渗透测试——武器化 vscode 项目指南☆37Jul 18, 2025Updated 8 months ago
- A powerful JNDI injection exploitation framework that supports RMI, LDAP and LDAPS protocols, including various bypass methods for high-v…☆573Feb 4, 2026Updated last month