slowmist/MasterMCP external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

slowmist/MasterMCP

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/slowmist/MasterMCP)

Close

slowmist / MasterMCPView on GitHubMore

• External links
• Readme badge

A demonstration toolkit revealing potential security vulnerabilities in MCP (Model Context Protocol) frameworks through data poisoning, JSON injection, function overriding, and cross-MCP call attacks, exposing AI security issues while providing defense recommendations. For educational and research purposes only.

☆97Jul 6, 2025Updated 10 months ago

Alternatives and similar repositories for MasterMCP

Users that are interested in MasterMCP are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Duffy12150557 / Security-Research-Toolkit

  View on GitHub
  Security Research Toolkit — Video and image analysis tool for neural inpainting and AI-generated content detection with SORA signature ex…
  ☆36Mar 13, 2026Updated last month
• k4yt3x / lexicon

  View on GitHub
  A low-entropy shellcode executor that encodes shellcode bytes into common English words, with anti-debugging capabilities.
  ☆22Aug 10, 2025Updated 9 months ago
• cwkiller / ClassLinefix

  View on GitHub
  Java bytecode line number restoration tool
  ☆141Aug 31, 2025Updated 8 months ago
• slowmist / MCP-Security-Checklist

  View on GitHub
  A comprehensive security checklist for MCP-based AI tools. Built by SlowMist to safeguard LLM plugin ecosystems.
  ☆828Apr 28, 2025Updated last year
• AabyssZG / Chrome-RCE-Poc

  View on GitHub
  Chrome-RCE-Poc
  ☆94Aug 24, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• luelueking / Deserial_Sink_With_JDBC

  View on GitHub
  Some ReadObject Sink With JDBC
  ☆245May 8, 2024Updated 2 years ago
• wangbo9719 / MEXTRA

  View on GitHub
  Source code for the ACL'2025 paper titled "Unveiling privacy risks in llm agent memory"
  ☆30Dec 2, 2025Updated 5 months ago
• pacemrc / VulDebug

  View on GitHub
  Java漏洞调试分析集合
  ☆91Mar 11, 2024Updated 2 years ago
• Greysahy / ipiguard

  View on GitHub
  [EMNLP 2025 Oral] IPIGuard: A Novel Tool Dependency Graph-Based Defense Against Indirect Prompt Injection in LLM Agents
  ☆18Sep 16, 2025Updated 7 months ago
• ProbiusOfficial / hello-ssrf

  View on GitHub
  【Hello-CTF labs】新手向的ssrf靶场，从协议，场景，绕过等多个ssrf攻击的基础维度展开。
  ☆58Mar 22, 2025Updated last year
• tarihub / hack-flank-cicd

  View on GitHub
  ☆11May 25, 2024Updated last year
• YangXiuxuan / Robust-Android-Malware-Detection-Against-Adversarial-Example-Attacks

  View on GitHub
  ☆18Apr 4, 2021Updated 5 years ago
• Esonhugh / My-Cloud-Security

  View on GitHub
  [ALL IN ONE] Everything that I shared to public about Cloud Security is here.
  ☆64Apr 19, 2025Updated last year
• JasmineAura / bkcrackGUI

  View on GitHub
  基于 bkcrack 的可视化压缩包明文攻击工具
  ☆57Mar 31, 2025Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• Esonhugh / Gopherus3

  View on GitHub
  Python3 Based gopherus, completely refactored and added more feature.
  ☆77Nov 29, 2024Updated last year
• rbowes-r7 / unrar-cve-2022-30333-poc

  View on GitHub
  ☆14Jul 18, 2022Updated 3 years ago
• ProbiusOfficial / ctf2awd

  View on GitHub
  【Hello-CTF labs】试试用CTF的方式来学习AWD？
  ☆84Jan 22, 2026Updated 3 months ago
• weisong-ucr / MAB-malware

  View on GitHub
  MAB-Malware an open-source reinforcement learning framework to generate AEs for PE malware. We model this problem as a classic multi-arme…
  ☆52Apr 15, 2025Updated last year
• invariantlabs-ai / mcp-injection-experiments

  View on GitHub
  Code snippets to reproduce MCP tool poisoning attacks.
  ☆192Apr 10, 2025Updated last year
• ProbiusOfficial / ssrf-labs

  View on GitHub
  【Hello-CTF labs】一个ssrf的综合靶场，包含RCE，SQL注入，Tomcat，Redis，MySQL提权等ssrf攻击场景
  ☆81Mar 18, 2025Updated last year
• Chave0v0 / YONYOU-TOOL

  View on GitHub
  用友漏洞综合利用工具
  ☆266Nov 9, 2024Updated last year
• anburocky3 / CyberDude-Training-Landing-Page-Web-design

  View on GitHub
  Simple landing page created with Pure HTML5, CSS3 :) Crafted with passion.
  ☆18Jun 8, 2020Updated 5 years ago
• GrrrDog / Sploits

  View on GitHub
  Place for random PoCs
  ☆18May 21, 2020Updated 5 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• mo-xiaoxi / HDiff

  View on GitHub
  ☆28Jun 7, 2022Updated 3 years ago
• Phelaine / SinkFinder

  View on GitHub
  闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数
  ☆510Jan 12, 2026Updated 3 months ago
• ProbiusOfficial / PHP-FilterChain-Exploit

  View on GitHub
  A Online PHP FilterChain Generator.
  ☆18Aug 3, 2024Updated last year
• goodlunatic / Docker-ProfileMaker-vol2

  View on GitHub
  使用Docker一键制作Vol2取证需要的Profile
  ☆22Aug 31, 2025Updated 8 months ago
• 9olidity / MCP-Server-Pentest

  View on GitHub
  ☆22Mar 24, 2025Updated last year
• Rvn0xsy / DumperAnalyze

  View on GitHub
  通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩，可以做一些破解、加密验证的绕过等操作
  ☆118Jun 18, 2024Updated last year
• FiroSolutions / cve-2020-7247-exploit

  View on GitHub
  Python exploit of cve-2020-7247
  ☆25Feb 19, 2020Updated 6 years ago
• star-ailab / LLM_Tune

  View on GitHub
  ☆15Sep 6, 2022Updated 3 years ago
• Firebasky / LdapBypassJndi

  View on GitHub
  The function of the tool is to inject JNDI through LDAP
  ☆29Dec 21, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• Boogipop / JavaSec

  View on GitHub
  JavaSec
  ☆47Mar 18, 2024Updated 2 years ago
• WiKi-Hub-2023 / WiKi-Hub-2023.github.io

  View on GitHub
  PHP代码审计案例-1000PHP
  ☆27Aug 20, 2024Updated last year
• slowmist / mwadb-go

  View on GitHub
  Go SDK of Malicious Wallet Address Database
  ☆11Apr 9, 2018Updated 8 years ago
• highflame-ai / ramparts

  View on GitHub
  mcp scan that scans any mcp server for indirect attack vectors and security or configuration vulnerabilities
  ☆87May 2, 2026Updated last week
• HappyHackingSpace / mcp-hydra

  View on GitHub
  A lightweight, extensible cybersecurity toolkit that connects AI assistants to security tools through the Model Context Protocol (MCP), e…
  ☆13Jun 13, 2025Updated 10 months ago
• hluwa / AndSecCxQL

  View on GitHub
  Android Security Bug Queries for CheckMarx
  ☆20Sep 13, 2022Updated 3 years ago
• WeaponizedVSCode / note-driven-hacking

  View on GitHub
  Note driven hacking weaponized vscode project guide. 笔记驱动渗透测试——武器化 vscode 项目指南
  ☆37Jul 18, 2025Updated 9 months ago