slowmist/MasterMCP external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

slowmist/MasterMCP

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/slowmist/MasterMCP)

Close

slowmist / MasterMCPView on GitHubMore

• External links
• Readme badge

A demonstration toolkit revealing potential security vulnerabilities in MCP (Model Context Protocol) frameworks through data poisoning, JSON injection, function overriding, and cross-MCP call attacks, exposing AI security issues while providing defense recommendations. For educational and research purposes only.

☆98Jul 6, 2025Updated 9 months ago

Alternatives and similar repositories for MasterMCP

Users that are interested in MasterMCP are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• k4yt3x / lexicon

  View on GitHub
  A low-entropy shellcode executor that encodes shellcode bytes into common English words, with anti-debugging capabilities.
  ☆22Aug 10, 2025Updated 8 months ago
• ucsb-seclab / Neurlux

  View on GitHub
  Code from the paper: Neurlux: Dynamic Malware Analysis Without Feature Engineering
  ☆13Dec 27, 2020Updated 5 years ago
• cwkiller / ClassLinefix

  View on GitHub
  Java bytecode line number restoration tool
  ☆139Aug 31, 2025Updated 7 months ago
• slowmist / MCP-Security-Checklist

  View on GitHub
  A comprehensive security checklist for MCP-based AI tools. Built by SlowMist to safeguard LLM plugin ecosystems.
  ☆826Apr 28, 2025Updated 11 months ago
• AabyssZG / Chrome-RCE-Poc

  View on GitHub
  Chrome-RCE-Poc
  ☆93Aug 24, 2024Updated last year
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• luelueking / Deserial_Sink_With_JDBC

  View on GitHub
  Some ReadObject Sink With JDBC
  ☆245May 8, 2024Updated last year
• pacemrc / VulDebug

  View on GitHub
  Java漏洞调试分析集合
  ☆91Mar 11, 2024Updated 2 years ago
• ProbiusOfficial / hello-ssrf

  View on GitHub
  【Hello-CTF labs】新手向的ssrf靶场，从协议，场景，绕过等多个ssrf攻击的基础维度展开。
  ☆57Mar 22, 2025Updated last year
• tarihub / hack-flank-cicd

  View on GitHub
  ☆11May 25, 2024Updated last year
• YangXiuxuan / Robust-Android-Malware-Detection-Against-Adversarial-Example-Attacks

  View on GitHub
  ☆18Apr 4, 2021Updated 5 years ago
• Esonhugh / My-Cloud-Security

  View on GitHub
  [ALL IN ONE] Everything that I shared to public about Cloud Security is here.
  ☆63Apr 19, 2025Updated last year
• JasmineAura / bkcrackGUI

  View on GitHub
  基于 bkcrack 的可视化压缩包明文攻击工具
  ☆57Mar 31, 2025Updated last year
• chainreactors / rem

  View on GitHub
  proxy/tunnel everything for red team!
  ☆253Apr 10, 2026Updated last week
• Esonhugh / Gopherus3

  View on GitHub
  Python3 Based gopherus, completely refactored and added more feature.
  ☆74Nov 29, 2024Updated last year
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• rbowes-r7 / unrar-cve-2022-30333-poc

  View on GitHub
  ☆14Jul 18, 2022Updated 3 years ago
• ProbiusOfficial / ctf2awd

  View on GitHub
  【Hello-CTF labs】试试用CTF的方式来学习AWD？
  ☆84Jan 22, 2026Updated 2 months ago
• weisong-ucr / MAB-malware

  View on GitHub
  MAB-Malware an open-source reinforcement learning framework to generate AEs for PE malware. We model this problem as a classic multi-arme…
  ☆51Apr 15, 2025Updated last year
• tianshuocong / TePA

  View on GitHub
  [S&P'24] Test-Time Poisoning Attacks Against Test-Time Adaptation Models
  ☆19Feb 18, 2025Updated last year
• invariantlabs-ai / mcp-injection-experiments

  View on GitHub
  Code snippets to reproduce MCP tool poisoning attacks.
  ☆192Apr 10, 2025Updated last year
• ProbiusOfficial / ssrf-labs

  View on GitHub
  【Hello-CTF labs】一个ssrf的综合靶场，包含RCE，SQL注入，Tomcat，Redis，MySQL提权等ssrf攻击场景
  ☆80Mar 18, 2025Updated last year
• Chave0v0 / YONYOU-TOOL

  View on GitHub
  用友漏洞综合利用工具
  ☆265Nov 9, 2024Updated last year
• mo-xiaoxi / HDiff

  View on GitHub
  ☆28Jun 7, 2022Updated 3 years ago
• Phelaine / SinkFinder

  View on GitHub
  闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数
  ☆509Jan 12, 2026Updated 3 months ago
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• johnhalloran321 / mcpSafetyScanner

  View on GitHub
  MCPSafetyScanner - Automated MCP safety auditing and remediation using Agents. More info: https://www.arxiv.org/abs/2504.03767
  ☆172Apr 10, 2025Updated last year
• ProbiusOfficial / PHP-FilterChain-Exploit

  View on GitHub
  A Online PHP FilterChain Generator.
  ☆17Aug 3, 2024Updated last year
• rlam3 / obsidian-wakatime-plugin

  View on GitHub
  ☆16Jul 31, 2024Updated last year
• goodlunatic / Docker-ProfileMaker-vol2

  View on GitHub
  使用Docker一键制作Vol2取证需要的Profile
  ☆22Aug 31, 2025Updated 7 months ago
• Rvn0xsy / DumperAnalyze

  View on GitHub
  通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩，可以做一些破解、加密验证的绕过等操作
  ☆118Jun 18, 2024Updated last year
• kyo-w / router-router

  View on GitHub
  Java web路由内存分析工具
  ☆439May 22, 2025Updated 10 months ago
• 9olidity / MCP-Server-Pentest

  View on GitHub
  ☆22Mar 24, 2025Updated last year
• CTF-Archives / Puff-Pastry

  View on GitHub
  ☆34Jul 26, 2024Updated last year
• FiroSolutions / cve-2020-7247-exploit

  View on GitHub
  Python exploit of cve-2020-7247
  ☆25Feb 19, 2020Updated 6 years ago
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• salesforce / prompt-leakage

  View on GitHub
  Code and datasets for the salesforce AI research paper on prompt leakage and multi-turn threats against LLMs
  ☆22Nov 10, 2025Updated 5 months ago
• Firebasky / LdapBypassJndi

  View on GitHub
  The function of the tool is to inject JNDI through LDAP
  ☆28Dec 21, 2021Updated 4 years ago
• Boogipop / JavaSec

  View on GitHub
  JavaSec
  ☆47Mar 18, 2024Updated 2 years ago
• WiKi-Hub-2023 / WiKi-Hub-2023.github.io

  View on GitHub
  PHP代码审计案例-1000PHP
  ☆27Aug 20, 2024Updated last year
• slowmist / mwadb-go

  View on GitHub
  Go SDK of Malicious Wallet Address Database
  ☆11Apr 9, 2018Updated 8 years ago
• highflame-ai / ramparts

  View on GitHub
  mcp scan that scans any mcp server for indirect attack vectors and security or configuration vulnerabilities
  ☆85Mar 30, 2026Updated 2 weeks ago
• hluwa / AndSecCxQL

  View on GitHub
  Android Security Bug Queries for CheckMarx
  ☆20Sep 13, 2022Updated 3 years ago