Skip to content
/ mcp-poisoning-poc Public

This repository demonstrates a variety of **MCP Poisoning Attacks** affecting real-world AI agent workflows.

License

View license
6 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

wbfoss/mcp-poisoning-poc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
docs
docs
 
 
DISCLOSURE.md
DISCLOSURE.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
agent_poc.py
agent_poc.py
 
 
fake_mcp_server.py
fake_mcp_server.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

MCP Poisoning Attack - PoC

This repository demonstrates a variety of MCP Poisoning Attacks affecting real-world AI agent workflows.

✅ Covered Scenarios

  • Code Generation Poisoning
  • Financial Report Exfiltration
  • Competitor Analysis Data Leak
  • Meeting Transcript Leaks
  • Code Review Exfiltration
  • Cross-Server Shadowing Attack

⚡ Setup

pip install -r requirements.txt

💥 Running the PoC

1️⃣ Start the fake MCP server:

python fake_mcp_server.py

2️⃣ In another terminal, run the agent simulation:

python agent_poc.py

☠️ Impact

  • Silent data exfiltration
  • Cross-tool hijacking
  • No visible clue to the user

License

Apache 2.0 - For educational and research use only.

About

This repository demonstrates a variety of **MCP Poisoning Attacks** affecting real-world AI agent workflows.

Topics

mcp cybersecurity mcpe-server llm aisecurity agentic-ai agenticworkflow mcp-server

Resources

Readme

License

View license
Activity
Custom properties

Stars

6 stars

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages