Happy slice of mcp pizzaMCP.pizza
Fire in da houseTop Tip:Paying $100+ per month for Perplexity, MidJourney, Runway, ChatGPT and other tools is crazy - get all your AI tools in one site starting at $15 per month with Galaxy AI Fire in da houseCheck it out free

ghidra-mcp

MCP.Pizza Chef: suidpit

The ghidra-mcp is an MCP server plugin for Ghidra that exposes its reverse engineering tools to LLM agents. It enables AI models to interact with Ghidra's functionalities, assisting reverse engineers in analyzing complex binaries, automating script writing, and speeding up vulnerability research. This server bridges Ghidra with AI workflows, allowing multi-step reasoning and tool usage within the reverse engineering domain.

Use This MCP server To

Automate binary analysis using AI-driven Ghidra scripts Enable LLMs to interact with Ghidra for reverse engineering Accelerate vulnerability research with AI-assisted tooling Generate and run Ghidra scripts from natural language prompts Extract structured insights from complex binaries Integrate Ghidra functionality into AI-powered workflows

README

Ghidra MCP Server

This extension contains a Ghidra Plugin that exposes a Model Context Protocol (MCP) server to expose Ghidra functionalities.

It can be used by LLM agents to aid reverse engineer in the process of understanding complex binaries and save time.

Example usage on a simple crackme:

output.mp4

As you can see from the video, Claude 3.7 Sonnet at some point goes "extra mile mode" and decides to write a Ghidra Script to solve the crackme, so I had to intervene and "steer" it towards KISS. I decided to keep that part since I think it clearly shows that, no matter how cool our MCP tools can be, LLMs are LLMs and there's so much more than tooling – such as good prompting and guidance.

Why?

MCP is the sexy thing these days, and an excellent Ghidra MCP plugin has been already released a few days ago.

Nevertheless:

  • Writing tools is fun
  • Effectively using LLMs is not straightforward yet, and "owning" the tooling helps a lot
  • I wanted to experiment with Java – it doesn't happen often – and embedding a Spring Boot application in Ghidra seemed an excellent way of doing that

Plus, quoting from the eternal "PoC || GTFO":

Build Your Own Fucking Birdfeeder.

What?

Model Context Protocol (MCP) was introduced in December 2024 by Anthropic to create a standard for interaction between AI assistant and "data sources", or "tools". Building an MCP server basically means building new equipment for AI agents to use, and since it's a standard, it's interoperable and we can use the same tools with different agents. That sounds great!

In its current status, this Ghidra MCP plugin exposes the following tools:

  • List functions
  • Decompile functions
  • Rename functions
  • Rename local variables
  • Comment functions
  • Get references from/to address
  • Search for strings in memory

It's mostly an experiment right now, but I'm eager to tinker with it and really understand how useful it can be for serious reverse engineering tasks.

Installation

You can download the extension from the releases.

To install it, launch Ghidra and then, before selecting any Tool, select File -> Install Extension -> "+" button to add the downloaded ZIP file. Once in the Code Browser Tool, select File -> Configure, then Configure under "Developer", and make sure to check the "GhidraMCPPlugin" box.

This will start the MCP server (you can confirm there's a java process running on port 8888 in your machine).

Build

Run gradle in the root of the project and you should see the ZIP file in the dist folder.

Usage

The embedded MCP Server in Ghidra is configured with the "SSE" transport, therefore you will need an MCP client that supports SSE.

Alternatively, install mcp-proxy via uv (uv tool install mcp-proxy) so that you can use it to do STDIO<->SSE proxying. For instance, this is my MCP server configuration in Cursor:

{
    "mcpServers": {
      "GhidraMCP": {
        "command": "mcp-proxy",
        "args": ["http://localhost:8888/sse"]
      }
    }
  }

Note: when using mcp-proxy, make sure to start Ghidra and open the Code Browser before starting the MCP tool in your client, otherwise mcp-proxy will not be able to connect to the SSE endpoint.

ghidra-mcp FAQ

How do I install the ghidra-mcp server plugin?
Download the plugin from its GitHub repository and follow the included installation instructions to add it to your Ghidra environment.
Can ghidra-mcp be used with multiple LLM providers?
Yes, it supports integration with various LLMs such as OpenAI, Claude, and Gemini for flexible AI-powered reverse engineering.
Does ghidra-mcp allow LLMs to write and execute Ghidra scripts?
Yes, LLMs can generate and run Ghidra scripts through the MCP server to automate complex reverse engineering tasks.
Is the ghidra-mcp server suitable for analyzing all binary types?
It supports a wide range of binaries compatible with Ghidra, enabling AI-assisted analysis across many architectures.
How does ghidra-mcp improve reverse engineering workflows?
By exposing Ghidra tools to LLMs, it automates tedious tasks, accelerates understanding, and enables multi-step reasoning.
What security considerations exist when using ghidra-mcp?
Since it allows script execution, ensure scripts are reviewed and run in controlled environments to prevent unintended actions.
Can ghidra-mcp be extended with custom Ghidra scripts?
Yes, users can add custom scripts that LLMs can invoke via the MCP server for tailored automation.