MCP Directory
Back

vulnerable-mcp-servers-lab

by appsecco · JavaScript · ★ 255

View on GitHub ↗

A collection of servers which are deliberately vulnerable to learn Pentesting MCP Servers.

#ai-red-teaming#ai-research#appsecco#bugbounty#hacking#learning-pentesting#mcp#mcp-client#mcp-server#pentesting#vulnerable-labs

Install

npx -y github:appsecco/vulnerable-mcp-servers-lab

Claude Desktop config

Add this to your claude_desktop_config.json: 

{
  "mcpServers": {
    "vulnerable-mcp-servers-lab": {
      "command": "npx",
      "args": [
        "-y",
        "github:appsecco/vulnerable-mcp-servers-lab"
      ]
    }
  }
}

From the README

Vulnerable MCP Servers Lab ========================== This repository contains **intentionally vulnerable** implementations of Model Context Protocol (MCP) servers (both local and remote). Each server lives in its own folder and includes a dedicated with full details on **what it does**, **how to run it**, and **how to demonstrate/attack the vulnerability**. **Do not run any of this outside a controlled lab environment.** - **Security training / research** into common MCP server and tool-integration failure modes. - **Hands-on demos** of how vulnerable MCP servers can lead to data exposure…
Read full README on GitHub →

💡 Need a managed MCP host?

Try Claude Pro for the smoothest MCP experience, or browse our cloud-hosted servers.

Related security servers

servers

modelcontextprotocol

Official ★ 84,814

Model Context Protocol Servers

Security · TypeScript

typescript-sdk

modelcontextprotocol

Official ★ 12,307

The official TypeScript SDK for Model Context Protocol servers and clients

Security · TypeScript

grafbase

grafbase

★ 1,228

[Acquired by The Guild] The Grafbase GraphQL Federation Gateway

Security · Rust

claude-ai-mcp

anthropics

Official ★ 236

claude-ai-mcp — MCP server.

Security

dedalus-mcp-python

dedalus-labs

★ 154

A simple and performant Model Context Protocol framework for Python.

Security · Python

pentest-mcp

DMontgomery40

★ 136

NOT for educational purposes: An MCP server for professional penetration testers including STDIO/HTTP/SSE support, nmap, go/dirbuster, nikto, JtR, hashcat, wordlist building, and more.

Security · JavaScript