Yggmrexodia/ida-pro-mcp
↗ GitHubAI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.
7,118
Stars
862
Forks
43
Watchers
50
Open Issues
Safety Rating A
The repository is a legitimate, high-popularity open-source project (7,100+ stars) that provides an IDA Pro plugin and MCP server for AI-assisted reverse engineering. No hardcoded secrets, malicious code patterns, obfuscated logic, data exfiltration concerns, or prompt injection attempts were identified in the README or metadata. The py_eval tool (which executes arbitrary Python in IDA context) is an intentional power-user feature clearly documented as such, not a backdoor. The project is MIT-licensed and maintained transparently on GitHub.
ℹAI-assisted review, not a professional security audit.
AI Analysis
IDA Pro MCP is a Model Context Protocol (MCP) server and IDA Pro plugin that bridges the IDA Pro disassembler/decompiler with AI language models, enabling AI-assisted reverse engineering workflows ('vibe reversing'). It exposes IDA Pro's analysis capabilities—decompilation, disassembly, cross-references, type inference, memory reading, debugger control, pattern matching, call graph analysis, and batch rename/patch operations—as MCP tools that any compatible MCP client (Claude, Cursor, VS Code, Cline, etc.) can invoke. It also supports a headless idalib mode for server-side binary analysis without the IDA GUI, SSE/streamable HTTP transports, and per-agent context isolation for concurrent multi-agent analyses.
Use Cases
- AI-assisted binary reverse engineering and malware analysis using natural language prompts
- Automated decompilation, variable renaming, type inference, and comment generation in IDA Pro via LLM agents
- Headless batch binary analysis using idalib with multiple concurrent AI agent sessions
- Integration of IDA Pro analysis capabilities into any MCP-compatible AI coding assistant or agent framework
- Crackme and CTF challenge solving via LLM-driven analysis of disassembly and decompilation output
Tags
Project Connections
rizinorg/cutter
Both provide AI/tool-assisted reverse engineering environments for binary analysis; Cutter is a GUI RE platform built on rizin, while ida-pro-mcp bridges IDA Pro specifically to AI agents via MCP.
vxcontrol/pentagi
PentAGI orchestrates multi-agent penetration testing workflows; ida-pro-mcp could serve as a specialized reverse engineering tool within such a pipeline, providing binary analysis capabilities to security-focused AI agents.
MervinPraison/PraisonAI
PraisonAI is a multi-agent orchestration framework that supports MCP protocol integration; it could use ida-pro-mcp as an MCP server to delegate binary analysis tasks to IDA Pro.
PurpleAILAB/Decepticon
Decepticon orchestrates autonomous red-team agents; ida-pro-mcp provides binary reverse engineering capabilities that could augment exploit development and vulnerability research workflows.
tirth8205/code-review-graph
Both expose specialized analysis capabilities via MCP to AI coding agents; code-review-graph targets source code structure while ida-pro-mcp targets compiled binary analysis, making them complementary in a security research pipeline.