A demonstration toolkit revealing potential security vulnerabilities in MCP (Model Context Protocol) frameworks through data poisoning, JSON injection, function overriding, and cross-MCP call attacks, exposing AI security issues while providing defense recommendations. For educational and research purposes only.
☆98Jul 6, 2025Updated 9 months ago
Alternatives and similar repositories for MasterMCP
Users that are interested in MasterMCP are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Code from the paper: Neurlux: Dynamic Malware Analysis Without Feature Engineering☆13Dec 27, 2020Updated 5 years ago
- Java bytecode line number restoration tool☆139Aug 31, 2025Updated 7 months ago
- A comprehensive security checklist for MCP-based AI tools. Built by SlowMist to safeguard LLM plugin ecosystems.☆825Apr 28, 2025Updated 11 months ago
- Chrome-RCE-Poc☆93Aug 24, 2024Updated last year
- Some ReadObject Sink With JDBC☆245May 8, 2024Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- It is a pure front-end tool for testing the security boundaries of large language models, helping researchers to find and fix potential s…☆21May 6, 2025Updated 11 months ago
- Source code for the ACL'2025 paper titled "Unveiling privacy risks in llm agent memory"☆29Dec 2, 2025Updated 4 months ago
- Java漏洞调试分析集合☆91Mar 11, 2024Updated 2 years ago
- [EMNLP 2025 Oral] IPIGuard: A Novel Tool Dependency Graph-Based Defense Against Indirect Prompt Injection in LLM Agents☆18Sep 16, 2025Updated 7 months ago
- 【Hello-CTF labs】新手向的ssrf靶场,从协议,场景,绕过等多个ssrf攻击的基础维度展开。☆57Mar 22, 2025Updated last year
- ☆18Apr 4, 2021Updated 5 years ago
- [ALL IN ONE] Everything that I shared to public about Cloud Security is here.☆63Apr 19, 2025Updated last year
- 基于 bkcrack 的可视化压缩包明文攻击工具☆57Mar 31, 2025Updated last year
- proxy/tunnel everything for red team!☆253Apr 10, 2026Updated last week
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Python3 Based gopherus, completely refactored and added more feature.☆74Nov 29, 2024Updated last year
- ☆14Jul 18, 2022Updated 3 years ago
- 【Hello-CTF labs】试试用CTF的方式来学习AWD?☆84Jan 22, 2026Updated 2 months ago
- MAB-Malware an open-source reinforcement learning framework to generate AEs for PE malware. We model this problem as a classic multi-arme…☆51Apr 15, 2025Updated last year
- [S&P'24] Test-Time Poisoning Attacks Against Test-Time Adaptation Models☆19Feb 18, 2025Updated last year
- Code snippets to reproduce MCP tool poisoning attacks.☆192Apr 10, 2025Updated last year
- 用友漏洞综合利用工具☆265Nov 9, 2024Updated last year
- ☆28Jun 7, 2022Updated 3 years ago
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆509Jan 12, 2026Updated 3 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A Online PHP FilterChain Generator.☆17Aug 3, 2024Updated last year
- 使用Docker一键制作Vol2取证需要的Profile☆22Aug 31, 2025Updated 7 months ago
- 通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩,可以做一些破解、加密验证的绕过等操作☆118Jun 18, 2024Updated last year
- Java web路由内存分析工具☆439May 22, 2025Updated 10 months ago
- ☆22Mar 24, 2025Updated last year
- ☆33Jul 26, 2024Updated last year
- ☆13Apr 18, 2025Updated last year
- ☆15Sep 6, 2022Updated 3 years ago
- The function of the tool is to inject JNDI through LDAP☆28Dec 21, 2021Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- JavaSec☆47Mar 18, 2024Updated 2 years ago
- PHP代码审计案例-1000PHP☆27Aug 20, 2024Updated last year
- RedSage: A Cybersecurity Generalist LLM (ICLR'26)☆39Apr 7, 2026Updated last week
- Go SDK of Malicious Wallet Address Database☆11Apr 9, 2018Updated 8 years ago
- Implementation of mixed language project compilation via Bazel platform.☆17Oct 10, 2020Updated 5 years ago
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆72Oct 13, 2024Updated last year