Mr-Infect/MCP-Penetration-testing
The ultimate OWASP MCP Top 10 security checklist and pentesting framework for Model Context Protocol (MCP), AI agents, and LLM-powered systems.
This framework helps cybersecurity professionals and AI engineers identify and mitigate security risks specific to Model Context Protocol (MCP) systems, AI agents, and LLM-powered applications. It provides a comprehensive, checklist-driven guide for auditing and penetration testing, detailing known vulnerabilities, attack surfaces, detection methods, and mitigation strategies. The output is a clear understanding of security posture, a numeric security score, and a roadmap for remediation.
Use this if you are a security engineer, pentester, auditor, or AI engineer responsible for ensuring the security of AI agents and systems built on the Model Context Protocol.
Not ideal if you are looking for a general cybersecurity checklist not specifically tailored to the unique vulnerabilities of AI and LLM-powered MCP systems.
Stars
10
Forks
1
Language
—
License
—
Category
Last pushed
Dec 22, 2025
Commits (30d)
0
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/mcp/Mr-Infect/MCP-Penetration-testing"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Higher-rated alternatives
Wh0am123/MCP-Kali-Server
MCP configuration to connect AI agent to a Linux machine.
DMontgomery40/pentest-mcp
NOT for educational purposes: An MCP server for professional penetration testers including...
BurtTheCoder/mcp-shodan
MCP server for Shodan — search internet-connected devices, IP reconnaissance, DNS lookups, and...
cyproxio/mcp-for-security
MCP for Security: A collection of Model Context Protocol servers for popular security tools like...
0x4m4/hexstrike-ai
HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot,...