High-risk tools in SeldomMaster

High severity SeldomMaster MCP Server 5 of 52 tools

5 of the 52 tools in SeldomMaster are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

discover_neighbors_arp Execute

Discovers IP addresses on the local network using the arp tool. Primes the pump by first ping sweeping any locally connected networks.
discover_neighbors_ssdp Execute

Uses the SSDP protocol to discover devices and services on the local network
fetch_web_page_curl Execute

fetch_web_page_curl
port_scan_nmap Execute

port_scan_nmap
send_http_payload_curl Execute

send_http_payload_curl

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

High-risk tools in SeldomMaster

Tools at high risk

Attacks that target this class

More on SeldomMaster

Enforce policy on every SeldomMaster tool call.