Identifies and classifies Mid-Session Tool Injection (MSTI) attacks on WebMCP into Tool Hijacking and Tool Framing, demonstrates disruption via implementation, and recommends mitigations like origin binding and logging.
Automatic red teaming llm-based agents with model context protocol tools
1 Pith paper cite this work. Polarity classification is still indexing.
1
Pith paper citing it
fields
cs.CR 1years
2026 1verdicts
UNVERDICTED 1representative citing papers
citing papers explorer
-
WebMCP Tool Surface Poisoning: Runtime Manipulation Attacks on LLM Agents
Identifies and classifies Mid-Session Tool Injection (MSTI) attacks on WebMCP into Tool Hijacking and Tool Framing, demonstrates disruption via implementation, and recommends mitigations like origin binding and logging.