GhidraMCP is a Ghidra plugin and MCP server that allows LLMs to autonomously reverse engineer applications by exposing Ghidra's core functionality to MCP clients for binary analysis and decompilation.
Here's a summary of the provided README content:
ghidraMCP is a Model Context Protocol (MCP) server designed to enable Large Language Models (LLMs) to autonomously reverse engineer applications using Ghidra. It functions as a Ghidra plugin, exposing core Ghidra functionalities to MCP clients.
The ghidraMCP server and Ghidra plugin offer:
The installation requires Ghidra, Python3, and the MCP SDK. The Ghidra plugin is installed via the "Install Extensions" option in Ghidra, using the provided ZIP file from the latest release. The plugin must then be enabled in Ghidra's configuration.
MCP clients, such as Claude Desktop and 5ire, can be configured to use ghidraMCP by specifying the path to the bridge_mcp_ghidra.py script in their respective configuration settings.
To build from source, use Maven with the command mvn clean package assembly:single. This generates a ZIP file containing the Ghidra plugin, resources, extensions.properties, and Module.manifest.
LaurieWired/GhidraMCP
March 23, 2025
March 29, 2025
Java