MCP Poisoning Attack - PoC

This repository demonstrates a variety of MCP Poisoning Attacks affecting real-world AI agent workflows.

✅ Covered Scenarios

• Code Generation Poisoning
• Financial Report Exfiltration
• Competitor Analysis Data Leak
• Meeting Transcript Leaks
• Code Review Exfiltration
• Cross-Server Shadowing Attack

⚡ Setup

pip install -r requirements.txt

💥 Running the PoC

1️⃣ Start the fake MCP server:

python fake_mcp_server.py

2️⃣ In another terminal, run the agent simulation:

python agent_poc.py

☠️ Impact

• Silent data exfiltration
• Cross-tool hijacking
• No visible clue to the user

License

Apache 2.0 - For educational and research use only.