A demonstration toolkit revealing potential security vulnerabilities in MCP (Model Context Protocol) frameworks through data poisoning, JSON injection, function overriding, and cross-MCP call attacks, exposing AI security issues while providing defense recommendations. For educational and research purposes only.
☆97Jul 6, 2025Updated 10 months ago
Alternatives and similar repositories for MasterMCP
Users that are interested in MasterMCP are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A low-entropy shellcode executor that encodes shellcode bytes into common English words, with anti-debugging capabilities.☆22Aug 10, 2025Updated 9 months ago
- Code from the paper: Neurlux: Dynamic Malware Analysis Without Feature Engineering☆13Dec 27, 2020Updated 5 years ago
- Java bytecode line number restoration tool☆143Aug 31, 2025Updated 8 months ago
- A comprehensive security checklist for MCP-based AI tools. Built by SlowMist to safeguard LLM plugin ecosystems.☆829Apr 28, 2025Updated last year
- Chrome-RCE-Poc☆94Aug 24, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Some ReadObject Sink With JDBC☆246May 8, 2024Updated 2 years ago
- It is a pure front-end tool for testing the security boundaries of large language models, helping researchers to find and fix potential s…☆21May 6, 2025Updated last year
- Java漏洞调试分析集合☆90Mar 11, 2024Updated 2 years ago
- 【Hello-CTF labs】新手向的ssrf靶场,从协议,场景,绕过等多个ssrf攻击的基础维度展开。☆59Mar 22, 2025Updated last year
- ☆11May 25, 2024Updated 2 years ago
- [ALL IN ONE] Everything that I shared to public about Cloud Security is here.☆64Apr 19, 2025Updated last year
- 基于 bkcrack 的可视化压缩包明文攻击工具☆57Mar 31, 2025Updated last year
- Python3 Based gopherus, completely refactored and added more feature.☆80Nov 29, 2024Updated last year
- proxy/tunnel everything for red team!☆260Apr 10, 2026Updated last month
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆14Jul 18, 2022Updated 3 years ago
- 【Hello-CTF labs】试试用CTF的方式来学习AWD?☆84Jan 22, 2026Updated 4 months ago
- [S&P'24] Test-Time Poisoning Attacks Against Test-Time Adaptation Models☆20Feb 18, 2025Updated last year
- Code snippets to reproduce MCP tool poisoning attacks.☆194Apr 10, 2025Updated last year
- 【Hello-CTF labs】一个ssrf的综合靶场,包含RCE,SQL注入,Tomcat,Redis,MySQL提权等ssrf攻击场景☆82Mar 18, 2025Updated last year
- 用友漏洞综合利用工具☆267Nov 9, 2024Updated last year
- Place for random PoCs☆18May 21, 2020Updated 6 years ago
- ☆28Jun 7, 2022Updated 3 years ago
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆510Jan 12, 2026Updated 4 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- MCPSafetyScanner - Automated MCP safety auditing and remediation using Agents. More info: https://www.arxiv.org/abs/2504.03767☆173Apr 10, 2025Updated last year
- A Online PHP FilterChain Generator.☆18Aug 3, 2024Updated last year
- 使用Docker一键制作Vol2取证需要的Profile☆22Aug 31, 2025Updated 8 months ago
- Java web路由内存分析工具☆440May 22, 2025Updated last year
- ☆22Mar 24, 2025Updated last year
- 通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩,可以做一些破解、加密验证的绕过等操作☆118Jun 18, 2024Updated last year
- ☆35Jul 26, 2024Updated last year
- Code and datasets for the salesforce AI research paper on prompt leakage and multi-turn threats against LLMs☆22Nov 10, 2025Updated 6 months ago
- The function of the tool is to inject JNDI through LDAP☆29Dec 21, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- JavaSec☆47Mar 18, 2024Updated 2 years ago
- PHP代码审计案例-1000PHP☆27Aug 20, 2024Updated last year
- Go SDK of Malicious Wallet Address Database☆11Apr 9, 2018Updated 8 years ago
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago
- Implementation of mixed language project compilation via Bazel platform.☆17Oct 10, 2020Updated 5 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆72Oct 13, 2024Updated last year
- Note driven hacking weaponized vscode project guide. 笔记驱动渗透测试——武器化 vscode 项目指南☆37Jul 18, 2025Updated 10 months ago