MCP // SECURITY // STDIO // SSE // HTTP // OAUTH // 2026

MCP ATTACK SURFACE MAP

vectors · surfaces · defenses · transports · 24 attacks · 20 surfaces
protocol 2025-06-18 // stdio · sse · streamable http

Topology protocol surfaces

Actors, transports, server internals, sandboxes, upstreams. Click any surface to see attacks. Severity heat overlays worst-case rating per surface.

SCHEMATIC // R3 MCP attack surface topologyMCP system diagram. user agent / LLM (model context) supply chain / deps / SBOM MCP client other MCP servers bypass via shell or curl // transport stdio (local pipe) SSE streamable HTTP MCP SERVER authn / authz schema validate rate / quota / CB kill switch / canary tool dispatch / policy cache (TTL) audit / SIEM sampling endpoint read handlers write handlers exec handlers roots output shaping / sanitization / classification credential vault OS / container / sandbox upstream servicesprometheus · alertmanager · jira · confluence · ssh hosts network · TLS · egress controls · segmentation · audit proxy

FIG.01 // mcp attack surface topology

users & upstreams clients & creds & supply server internals transport & infra high-risk surface

Catalog attacks

Toggle attacks and defenses. Filter, search, hit heat to color the topology by worst-case severity per surface.

view
filter
/search jknav escclear

Detail live trace

Selected vector or surface unfolds with full attack path, transport notes, and mitigations. Each item has a copy-link button.

DETAIL // CTX

// select a vector or surface.