IDA Pro MCP

Simple MCP Server to allow vibe reversing in IDA Pro.

https://github.com/user-attachments/assets/6ebeaa92-a9db-43fa-b756-eececce2aca0

The binaries and prompt for the video are available in the mcp-reversing-dataset repository.

Available functionality:

• check_connection(): Check if the IDA plugin is running.
• get_metadata(): Get metadata about the current IDB.
• get_function_by_name(name): Get a function by its name.
• get_function_by_address(address): Get a function by its address.
• get_current_address(): Get the address currently selected by the user.
• get_current_function(): Get the function currently selected by the user.
• convert_number(text, size): Convert a number (decimal, hexadecimal) to different representations.
• list_functions(offset, count): List all functions in the database (paginated).
• list_globals_filter(offset, count, filter): List matching globals in the database (paginated, filtered).
• list_globals(offset, count): List all globals in the database (paginated).
• list_strings_filter(offset, count, filter): List matching strings in the database (paginated, filtered).
• list_strings(offset, count): List all strings in the database (paginated).
• decompile_function(address): Decompile a function at the given address.
• disassemble_function(start_address): Get assembly code (address: instruction; comment) for a function.
• get_xrefs_to(address): Get all cross references to the given address.
• get_xrefs_to_field(struct_name, field_name): Get all cross references to a named struct field (member).
• get_entry_points(): Get all entry points in the database.
• set_comment(address, comment): Set a comment for a given address in the function disassembly and pseudocode.
• rename_local_variable(function_address, old_name, new_name): Rename a local variable in a function.
• rename_global_variable(old_name, new_name): Rename a global variable.
• set_global_variable_type(variable_name, new_type): Set a global variable's type.
• rename_function(function_address, new_name): Rename a function.
• set_function_prototype(function_address, prototype): Set a function's prototype.
• declare_c_type(c_declaration): Create or update a local type from a C declaration.
• set_local_variable_type(function_address, variable_name, new_type): Set a local variable's type.

Unsafe functions (--unsafe flag required):

• dbg_get_call_stack(): Get the current call stack.
• dbg_get_registers(): Get all registers and their values. This function is only available when debugging.
• dbg_run_to(address): Run the debugger to the specified address.
• dbg_exit_process(): Exit the debugger.
• dbg_continue_process(): Continue the debugger.
• dbg_enable_breakpoint(address, enable): Enable or disable a breakpoint at the specified address.
• dbg_list_breakpoints(): List all breakpoints in the program.
• dbg_set_breakpoint(address): Set a breakpoint at the specified address.
• dbg_delete_breakpoint(address): del a breakpoint at the specified address.
• dbg_start_process(): Start the debugger.

Prerequisites

• Python (3.11 or higher)
  • Use idapyswitch to switch to the newest Python version
• IDA Pro (8.3 or higher, 9 recommended)
• Supported MCP Client (pick one you like)
  • Cline
  • Roo Code
  • Claude
  • Cursor
  • VSCode Agent Mode
  • Windsurf
  • Other MCP Clients: Run ida-pro-mcp --config to get the JSON config for your client.

Installation

Install (or upgrade) the IDA Pro MCP package:

pip install --upgrade git+https://github.com/mrexodia/ida-pro-mcp

Configure the MCP servers and install the IDA Plugin:

ida-pro-mcp --install

Important: Make sure you completely restart IDA/Visual Studio Code/Claude for the installation to take effect. Claude runs in the background and you need to quit it from the tray icon.

https://github.com/user-attachments/assets/65ed3373-a187-4dd5-a807-425dca1d8ee9

Prompt Engineering

LLMs are prone to hallucinations and you need to be specific with your prompting. For reverse engineering the conversion between integers and bytes are especially problematic. Below is a minimal example prompt, feel free to start a discussion or open an issue if you have good results with a different prompt:

Your task is to analyze a crackme in IDA Pro. You can use the MCP tools to retrieve information. In general use the following strategy:

• Inspect the decompilation and add comments with your findings
• Rename variables to more sensible names
• Change the variable and argument types if necessary (especially pointer and array types)
• Change function names to be more descriptive
• If more details are necessary, disassemble the function and add comments with your findings
• NEVER convert number bases yourself. Use the convert_number MCP tool if needed!
• Do not attempt brute forcing, derive any solutions purely from the disassembly and simple python scripts
• Create a report.md with your findings and steps taken at the end
• When you find a solution, prompt to user for feedback with the password you found

This prompt was just the first experiment, please share if you found ways to improve the output!

Tips for Enhancing LLM Accuracy

Large Language Models (LLMs) are powerful tools, but they can sometimes struggle with complex mathematical calculations or exhibit "hallucinations" (making up facts). Make sure to tell the LLM to use the conver_number MCP and you might also need math-mcp for certain operations.

Another thing to keep in mind is that LLMs will not perform well on obfuscated code. Before trying to use an LLM to solve the problem, take a look around the binary and spend some time (automatically) removing the following things:

• String encryption
• Import hashing
• Control flow flattening
• Code encryption
• Anti-decompilation tricks

You should also use a tool like Lumina or FLIRT to try and resolve all the open source library code and the C++ STL, this will further improve the accuracy.

SSE Transport & Headless MCP

You can run an SSE server to connect to the user interface like this:

uv run ida-pro-mcp --transport http://127.0.0.1:8744/sse

After installing idalib you can also run a headless SSE server:

uv run idalib-mcp --host 127.0.0.1 --port 8745 path/to/executable

Note: The idalib feature was contributed by Willi Ballenthin.

Manual Installation

Note: This section is for LLMs and power users who need detailed installation instructions.

Manual MCP Server Installation (Cline/Roo Code)

To install the MCP server yourself, follow these steps:

1. Install uv globally:
   • Windows: pip install uv
   • Linux/Mac: curl -LsSf https://astral.sh/uv/install.sh | sh
2. Clone this repository, for this example C:\MCP\ida-pro-mcp.
3. Navigate to the Cline/Roo Code MCP Servers configuration (see screenshot).
4. Click on the Installed tab.
5. Click on Configure MCP Servers, which will open cline_mcp_settings.json.
6. Add the ida-pro-mcp server:

{
  "mcpServers": {
    "github.com/mrexodia/ida-pro-mcp": {
      "command": "uv",
      "args": [
        "--directory",
        "c:\\MCP\\ida-pro-mcp",
        "run",
        "server.py",
        "--install-plugin"
      ],
      "timeout": 1800,
      "disabled": false
    }
  }
}

To check if the connection works you can perform the following tool call:

<use_mcp_tool>
<server_name>github.com/mrexodia/ida-pro-mcp</server_name>
<tool_name>check_connection</tool_name>
<arguments></arguments>
</use_mcp_tool>

IDA Plugin installation

The IDA Pro plugin will be installed automatically when the MCP server starts. If you disabled the --install-plugin option, use the following steps:

1. Copy (not move) src/ida_pro_mcp/mcp-plugin.py in your plugins folder (%appdata%\Hex-Rays\IDA Pro\plugins on Windows).
2. Open an IDB and click Edit -> Plugins -> MCP to start the server.

Comparison with other MCP servers

There are a few IDA Pro MCP servers floating around, but I created my own for a few reasons:

1. Installation should be fully automated.
2. The architecture of other plugins make it difficult to add new functionality quickly (too much boilerplate of unnecessary dependencies).
3. Learning new technologies is fun!

If you want to check them out, here is a list (in the order I discovered them):

• https://github.com/taida957789/ida-mcp-server-plugin (SSE protocol only, requires installing dependencies in IDAPython).
• https://github.com/fdrechsler/mcp-server-idapro (MCP Server in TypeScript, excessive boilerplate required to add new functionality).
• https://github.com/MxIris-Reverse-Engineering/ida-mcp-server (custom socket protocol, boilerplate).

Feel free to open a PR to add your IDA Pro MCP server here.

Development

Adding new features is a super easy and streamlined process. All you have to do is add a new @jsonrpc function to mcp-plugin.py and your function will be available in the MCP server without any additional boilerplate! Below is a video where I add the get_metadata function in less than 2 minutes (including testing):

https://github.com/user-attachments/assets/951de823-88ea-4235-adcb-9257e316ae64

To test the MCP server itself:

uv run mcp dev src/ida_pro_mcp/server.py

This will open a web interface at http://localhost:5173 and allow you to interact with the MCP tools for testing.

For testing I create a symbolic link to the IDA plugin and then POST a JSON-RPC request directly to http://localhost:13337/mcp. After enabling symbolic links you can run the following command:

uv run ida-pro-mcp --install

Generate the changelog of direct commits to main:

git log --first-parent --no-merges 1.2.0..main "--pretty=- %s"