GhidrAssistMCP
by jtang613
Overview
This Ghidra extension provides an MCP server, enabling AI assistants and other tools to interact with Ghidra's reverse engineering capabilities through a standardized API, supporting program analysis, modification, and navigation.
Installation
No command providedSecurity Notes
CRITICAL: The server lacks any explicit authentication or authorization mechanisms for incoming MCP requests. While it defaults to binding to `localhost:8080`, the configuration allows changing the host and port, potentially exposing the unauthenticated API to the network. Any process on the host machine (or a remote attacker if misconfigured) can execute any enabled tool, including those that modify the Ghidra database (e.g., `rename_function`, `set_data_type`, `create_struct`, `modify_struct`). This presents a significant security risk for data integrity and system compromise within the Ghidra environment. Relying on internal Ghidra APIs via reflection also introduces potential fragility and unhandled edge cases if inputs are crafted maliciously.
Similar Servers
ida-pro-mcp
This project provides an MCP (Model Context Protocol) server that integrates with IDA Pro, enabling AI assistants to perform reverse engineering tasks like binary analysis, decompilation, memory manipulation, and debugging within the IDA Pro environment.
reverse-engineering-assistant
Provides an MCP (Model Context Protocol) server to expose Ghidra's reverse engineering capabilities for AI models and automated binary analysis in a headless environment.
easy-code-reader
Provides a Model Context Protocol (MCP) server for AI assistants to intelligently read Java source code from local projects and Maven dependencies, supporting decompilation and multi-module analysis.
ida_domain_mcp
A headless IDA Pro server for remote, programmatic binary analysis and reverse engineering via the Model Context Protocol (MCP).