binja-lattice MCP Server

Use This MCP server To

Export pseudocode and disassembly from Binary Ninja for external analysis Remotely rename functions and variables in a Binary Ninja database Add or update comments in binary analysis via HTTP requests Securely authenticate and manage sessions with token-based system Integrate Binary Ninja data into AI workflows using MCP protocol Enable encrypted communication between Binary Ninja and external tools Automate binary modification tasks through REST API calls

README

BinjaLattice

BinjaLattice is a secure communication protocol for Binary Ninja that enables interaction with external Model Context Protocol (MCP) servers and tools. It provides a structured way to acquire information from Binary Ninja and the ability to modify an active Binary Ninja database over HTTP with a REST API.

Demo

Features

Secure Authentication: Token-based authentication system
Encrypted Communication: Optional SSL/TLS encryption
Binary Analysis Context: Export pseudocode, disassembly, variable names, binary information etc.
Binary Modification: Update function names, add comments, rename variables
Token Management: Automatic expiration and renewal of authentication tokens

Installation

Copy lattice_server_plugin.py to your Binary Ninja plugins directory:
- Linux: ~/.binaryninja/plugins/
- macOS: ~/Library/Application Support/Binary Ninja/plugins/
- Windows: %APPDATA%\Binary Ninja\plugins\
Create a virtual environment pip -m venv venv-test (or your preferred dependency manager)
Activate your virtual environment and install required Python dependencies:
- Install with: pip install -r requirements.txt (or your preferred method)

Usage

Starting the Server in Binary Ninja

Open Binary Ninja and load a binary file
Go to Plugins > Start Lattice Protocol Server
The server will start and display the API key in the log console
Set the API key as the BNJLAT environment variable in your MCP configuration

Example MCP configuration (mcp.json) from Cursor:

{
    "mcpServers": {
      "binja-lattice-mcp": {
        "command": "/path/to/venv/bin/python",
        "args": ["/path/to/mcp_server.py"],
        "env": {
            "BNJLAT": "your_api_key_here"
        }
      }
    }
}

Available MCP Tools

The following tools are available through the MCP server:

get_all_function_names: Get a list of all function names in the binary
get_binary_info: Get information about the binary being analyzed
update_function_name: Update the name of a function
update_variable_name: Change variable name within function to specified name
add_comment_to_address: Add a comment to a specific address
add_comment_to_function: Add a comment to a function
get_function_disassembly: Get disassembly for a function
get_function_pseudocode: Get pseudocode for a function
get_function_variables: Get variables and parameters for a function
get_cross_references_to_function: Get cross references to a function

Client Library Usage

The Lattice client library provides a Python interface for interacting with the BinjaLattice server:

from lib.lattice import Lattice

# Initialize client
client = Lattice(host='localhost', port=9000, use_ssl=False)

# Authenticate with API key
client.authenticate("username", "API_KEY")

# Example: Get binary information
binary_info = client.get_binary_info()

# Example: Update function name
client.update_function_name("old_name", "new_name")

# Example: Add comment to function
client.add_comment_to_function("function_name", "This function handles authentication")

Command Line Interface

The project includes lattice_client.py, which provides an interactive command-line interface for testing and debugging the BinjaLattice server:

python lattice_client.py --host localhost --port 9000 [--ssl] --username user --password YOUR_API_KEY

Command Line Options

--host: Server host (default: localhost)
--port: Server port (default: 9000)
--ssl: Enable SSL/TLS encryption
--interactive, -i: Run in interactive mode
--username: Username for authentication
--password: Password/API key for authentication
--token: Authentication token (if you have one from previous authentication)

Interactive Mode

The interactive mode provides a menu-driven interface with the following options:

Get Binary Information
Get Function Context by Address
Get Function Context by Name
Update Function Name
Update Variable Name
Add Comment to Function
Add Comment to Address
Reconnect to Server
Get All Function Names
Get Function Disassembly
Get Function Pseudocode
Get Function Variables
Get Cross References to Function
Exit

Example usage with interactive mode:

python lattice_client.py -i --ssl --username user --password YOUR_API_KEY

Non-Interactive Commands

You can also use the client to execute single commands:

# Get binary information
python lattice_client.py --username user --password YOUR_API_KEY --get-binary-info

# Get function disassembly
python lattice_client.py --username user --password YOUR_API_KEY --get-function-disassembly "main"

# Add comment to a function
python lattice_client.py --username user --password YOUR_API_KEY --add-comment-to-function "main" "Entry point of the program"

Security Notes

The API key is generated randomly on server start and shown in the Binary Ninja log
Tokens expire after 8 hours by default
SSL/TLS requires a certificate and key be provided by the user (disabled by default)
All requests require authentication via API key or token
The server runs locally by default on port 9000

Development

The main server implementation is in plugin/lattice_server_plugin.py
MCP server implementation is in mcp_server.py
Client library is in lib/lattice.py

Adding New Features

To add new functionality:

Add new endpoint handlers in LatticeRequestHandler class in lattice_server_plugin.py
Add corresponding client methods in Lattice class in lib/lattice.py
Add new MCP tools in mcp_server.py

Running Tests

Create a Python virtual environment and install the requirements.txt
Install the Binary Ninja Python API with the install_api.py provided in your Binary Ninja installation directory
Run the tests with pytest tests/ -v

License

MIT License

binja-lattice-mcp FAQ

How do I install the BinjaLattice MCP server?

Copy the lattice_server_plugin.py to your Binary Ninja plugins directory and follow the setup instructions in the README.

How does BinjaLattice ensure secure communication?

It uses token-based authentication and supports optional SSL/TLS encryption to protect data in transit.

Can I modify the Binary Ninja database remotely using this server?

Yes, you can update function names, add comments, and rename variables via the REST API.

How are authentication tokens managed?

Tokens automatically expire and can be renewed to maintain secure sessions.

What kind of binary data can I export through BinjaLattice?

You can export pseudocode, disassembly, variable names, and other binary information.

Is BinjaLattice compatible with multiple LLM providers?

Yes, it supports integration with various MCP clients that can use models like OpenAI, Claude, and Gemini.

Does BinjaLattice support encrypted communication?

Yes, it optionally supports SSL/TLS encryption for secure data exchange.

Can I automate binary analysis workflows using BinjaLattice?

Yes, by integrating with MCP clients, you can automate data extraction and modification tasks remotely.