Public
MCP-Poisoning-Poc
2025-04-02
该存储库展示了各种** MCP中毒攻击**影响现实世界中AI代理工作流程。
0
Github Watches
0
Github Forks
4
Github Stars
MCP Poisoning Attack - PoC
This repository demonstrates a variety of MCP Poisoning Attacks affecting real-world AI agent workflows.
✅ Covered Scenarios
- Code Generation Poisoning
- Financial Report Exfiltration
- Competitor Analysis Data Leak
- Meeting Transcript Leaks
- Code Review Exfiltration
- Cross-Server Shadowing Attack
⚡ Setup
pip install -r requirements.txt
💥 Running the PoC
1️⃣ Start the fake MCP server:
python fake_mcp_server.py
2️⃣ In another terminal, run the agent simulation:
python agent_poc.py
☠️ Impact
- Silent data exfiltration
- Cross-tool hijacking
- No visible clue to the user
License
Apache 2.0 - For educational and research use only.
相关推荐
Confidential guide on numerology and astrology, based of GG33 Public information
Emulating Dr. Jordan B. Peterson's style in providing life advice and insights.
Your go-to expert in the Rust ecosystem, specializing in precise code interpretation, up-to-date crate version checking, and in-depth source code analysis. I offer accurate, context-aware insights for all your Rust programming questions.
Take an adjectivised noun, and create images making it progressively more adjective!
Reviews
2
(1)
user_lo85STp6
2025-04-16
I've been using the mcp-poisoning-poc by wbfoss and it's an impressive tool. It provides a comprehensive and effective way to understand and demonstrate MCP poisoning. The repository on GitHub is well-documented, making the setup and usage straightforward even for those who are new to this concept. Highly recommended for anyone looking to delve into MCP security issues. Check it out at: https://github.com/wbfoss/mcp-poisoning-poc.