Sign up to save your podcasts
Or
Share Episode 283 - Intentionally-Vulnerable MCP Server, Hallucinating Software Packages
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 283 - Intentionally-Vulnerable MCP Server, Hallucinating Software Packages
Ok, so vulnerable MCP tools are a thing now? Ken demonstrates installing and running an intentionally vulnerable MCP server with a bunch of example issues. Following is a discussion of the recent article and research around hallucinations of 3rd party dependencies/libraries in AI-Generated Python and JavaScript. New attack targets all dependent on how creative the LLM is allowed to be. A short aside on why we talk about AI and LLMs so much.
View all episodes
4.9
1717 ratings
Ok, so vulnerable MCP tools are a thing now? Ken demonstrates installing and running an intentionally vulnerable MCP server with a bunch of example issues. Following is a discussion of the recent article and research around hallucinations of 3rd party dependencies/libraries in AI-Generated Python and JavaScript. New attack targets all dependent on how creative the LLM is allowed to be. A short aside on why we talk about AI and LLMs so much.
More shows like Absolute AppSec
View all
Risky Business
363 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
634 Listeners
The Scathing Atheist
3,190 Listeners
The Twenty Minute VC (20VC): Venture Capital | Startup Funding | The Pitch
513 Listeners
The Skepticrat
1,979 Listeners
The Application Security Podcast
36 Listeners
Darknet Diaries
7,844 Listeners
Techmeme Ride Home
945 Listeners
Defense in Depth
72 Listeners
My First Million
2,603 Listeners
Cautionary Tales with Tim Harford
5,091 Listeners
People I (Mostly) Admire
2,110 Listeners
Risky Bulletin
33 Listeners
Critical Thinking - Bug Bounty Podcast
47 Listeners