Critical-risk tools in AF_MCP
9 of the 72 tools in AF_MCP are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
block_add_businessDestructive新增业务封锁 IP,并在执行前进行白名单和人工确认校验。
-
block_clear_attackersDestructive清空封锁攻击者记录,并强制要求显式确认。
-
block_clear_businessDestructive清空业务封锁 IP,并强制要求显式确认。
-
block_clear_tempDestructive清空临时封锁 IP,并强制要求显式确认。
-
block_delete_attackersDestructive批量删除封锁攻击者,并在执行前进行白名单和人工确认校验。
-
block_delete_businessDestructive按条件删除业务封锁 IP,并在执行前进行白名单和人工确认校验。
-
block_delete_exceptionsDestructive批量删除例外封锁配置。
-
block_delete_tempDestructive按条件删除临时封锁 IP,并在执行前进行白名单和人工确认校验。
-
clear_usg_connectionDestructive清空通过聊天保存的 USG 连接账号,后续需重新调用 set_usg_connection。
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.