securing-mcp-servers

Notes and exercises for the O'Reilly live course: [Securing MCP Servers](https://learning.oreilly.com/live-events/securing-mcp-servers/0642572262747/0642572301781/) — by Katie Paxton-Fear

> Hands-on exploitation and defense in a controlled environment.

This course covers security vulnerabilities in Model Context Protocol (MCP) implementations from an attacker's perspective. Topics include mapping agentic AI attack surfaces, identifying critical vulnerabilities, exploitation techniques, and implementing robust mitigations.

• Assess and communicate primary security and privacy risks in MCP services
• Design and implement secure MCP services with protection against the top five vulnerability classes
• Develop and execute comprehensive security testing plans for MCP implementations
• Recommend and deploy practical mitigations for common MCP security vulnerabilities

| Module | Topic | |--------|-------| | 1 | Introduction to MCP security | | 2 | Agentic AI attack surface | | 3 | Vulnerability deep dive — Prompt injection | | 4 | Vulnerability deep dive — Preference attacks | | 5 | Vulnerability deep dive — Privilege escalation | | 6 | Vulnerability deep dive — Supply chain vulnerabilities | | 7 | Mitigations and secure MCP design |

• Familiarity with common web application security vulnerabilities (OWASP Top 10)
• Basic understanding of MCP concepts and use cases
• Experience with API/penetration testing (helpful but not required)

• Course Slides (PDF)

• Book: *Building Applications with AI Agents*
• Live course: Building AI Agents with MCP