@iflow-mcp/promptfoo-evil-mcp-server

An MCP server that simulates malicious behaviors for security testing and demonstration purposes.

Evaluated Mar 17, 2026 (0d ago)

Homepage ↗ Repo ↗ Security mcp security testing

⚙ Agent Friendliness

/ 100

Can an agent use this?

🔒 Security

/ 100

Is it safe for agents?

⚡ Reliability

/ 100

Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality

Documentation

Error Messages

Auth Simplicity

100

Rate Limits

🔒 Security

TLS Enforcement

Auth Strength

Scope Granularity

Dep. Hygiene

Secret Handling

The server is designed for security testing and should not be used with real customer data.

⚡ Reliability

Uptime/SLA

Version Stability

Breaking Changes

Error Recovery

Use Cases

• Security testing
• Vulnerability assessment
• Educational demonstrations
• Red team exercises
• Security awareness training

Not For

• Production environments
• Real customer data

Interface

REST API

Yes

GraphQL

gRPC

MCP Server

Yes

SDK

Webhooks

Yes

Authentication

Methods: API Key

OAuth: No Scopes: No

Simple API key authentication.

Pricing

Free tier: No

Requires CC: No

Agent Metadata

Idempotent

False

Retry Guidance

Not documented

Full Evaluation Report

Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for @iflow-mcp/promptfoo-evil-mcp-server.

AI-powered analysis · PDF + markdown · Delivered within 30 minutes

$99

Package Brief

Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.

Delivered within 10 minutes

Score Monitoring

Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.

Continuous monitoring

$3/mo

API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-03-17.