Assessing the Attack Surface of Remote MCP Servers

This edition dives into our latest analysis of remote MCP servers and how integrations expand the attack surface for LLM-based systems. We also share quick updates from our recent K-Talks session, industry events, and why feedback plays a key role in delivering stronger pentesting assessments.

December 02, 2025

šŸ“ Latest from Our Blog:

MCP (Model Context Protocol) defines how LLMs interact with external data sources and tools. However, more reach and integrations equals more surface, where the usual vulnerability categories show up.

Matias Forti explores how MCPā€™s architecture impacts pentesting workflows, why conventional tools struggle to keep up, and how frameworks like MCP Inspector and NCCā€™s HTTP Bridge can help overcome these challenges.

ā­ Highlight:

ā€œWhile the MCP specification brings a novel interface for integrating LLMs with external systems, it also introduces familiar risks in a new format. Remote MCP servers present a clear attack surface that mirrors traditional web application vulnerabilities like command injection, SSRF, and IDOR.ā€

MatĆ­as Forti - Technical Lead

šŸŽ™ļø K-Talks:

In our Kulkan Talks space, our team shares techniques and findings that help strengthen upcoming assessments. In the latest session, Agustin Dendarys and Matias Forti walked the team through our wireless security testing methodology.

At Kulkan, continuous learning and collaborative knowledge sharing is what drives our ability to deliver robust security assessments.

šŸ—“ļø Key Industry Events:

Lucas Lavarello, Kulkanā€™s CEO, joined a panel alongside other cybersecurity leaders at the ā€œTecweek Emprendeā€ event, where he shared lessons learned and practical advice for founders building secure startups.

Held in Buenos Aires, the event offered a strong platform to highlight how early-stage companies can gain a significant advantage by fostering a culture of open communication and basic security hygiene.

šŸ’” Kulkanner Insight:

How do We Handle Feedback?

By Agustin Dendarys.

At Kulkan, feedback in one of our most powerful tools. Itā€™s not only about giving feedback, itā€™s about communicating it correctly. Receiving and acting on feedback is just as important; which is why we proactively ask our customers for input right after every project we deliverā€¦

Ready to strengthen your security posture?

If youā€™re planning upcoming penetration testing initiatives, letā€™s start the conversation and explore how our attacker-led approach can help secure your business and support its growth.