MCP (Model Context Protocol) is the new standard for connecting AI agents to tools. The security is a disaster right now.
BlueRock Security scanned 7,000+ live MCP servers 36.7% were vulnerable to SSRF. Hundreds had zero authentication or encryption.
So I built AgentWarden — a CLI tool that scans MCP servers for real vulnerabilities:
- Unauthenticated endpoints
- SSRF via tool parameters
- Prompt injection in tool descriptions (tool poisoning)
- Path traversal in file tools
- Tool shadowing and typosquatting
- Missing rate limiting
- TLS misconfigurations
- Sensitive data exposure
Usage:
agentwarden scan https://your-mcp-server.com -v
agentwarden scan https://your-mcp-server.com -o report.html
GitHub: https://github.com/Agent-Warden/Agent-Warden
Scanned several live MCP servers already. Would love feedback/contribution from anyone in the security space building on MCP.
Top comments (0)