Simple MCP Server to allow vibe reversing in IDA Pro.
ida-pro-mcp-success.mp4
The binaries and prompt for the video are available in the mcp-reversing-dataset repository.
Available functionality:
check_connection: Check if the IDA plugin is running.get_metadata(): Get metadata about the current IDB.get_function_by_name(name): Get a function by its name.get_function_by_address(address): Get a function by its address.get_current_address(): Get the address currently selected by the user.get_current_function(): Get the function currently selected by the user.convert_number(text, size): Convert a number (decimal, hexadecimal) to different representations.list_functions(offset, count): List all functions in the database (paginated).decompile_function(address): Decompile a function at the given address.disassemble_function(start_address): Get assembly code (address: instruction; comment) for a function.get_xrefs_to(address): Get all cross references to the given address.get_entry_points(): Get all entry points in the database.set_comment(address, comment): Set a comment for a given address in the function disassembly and pseudocode.rename_local_variable(function_address, old_name, new_name): Rename a local variable in a function.rename_function(function_address, new_name): Rename a function.set_function_prototype(function_address, prototype): Set a function's prototype.create_new_type(c_declaration): Create a new local type from a C declaration.set_local_variable_type(function_address, variable_name, new_type): Set a local variable's type.
- Python (3.10 or higher)
- Use
idapyswitchto switch to the newest Python version
- Use
- IDA Pro (8.3 or higher, 9 recommended)
- Supported MCP Client (pick one you like)
Install (or upgrade) the IDA Pro MCP package:
pip install --upgrade git+https://github.com/mrexodia/ida-pro-mcpConfigure the MCP servers and install the IDA Plugin:
ida-pro-mcp --install
Important: Make sure you completely restart IDA/Visual Studio Code/Claude for the installation to take effect. Claude runs in the background and you need to quit it from the tray icon.
ida-pro-mcp-installation.mp4
LLMs are prone to hallucinations and you need to be specific with your prompting. For reverse engineering the conversion between integers and bytes are especially problematic. Below is a minimal example prompt, feel free to start a discussion or open an issue if you have good results with a different prompt:
You task is to analyze a crackme in IDA Pro. You can use the MCP tools to retrieve information. In general use the following strategy:
- Inspect the decompilation and add comments with your findings
- Rename variables to more sensible names
- Change the variable and argument types if necessary (especially pointer and array types)
- Change function names to be more descriptive
- If more details are necessary, disassemble the function and add comments with your findings
- NEVER convert number bases yourself. Use the convert_number MCP tool if needed!
- Do not attempt brute forcing, derive any solutions purely from the disassembly and simple python scripts
- Create a report.md with your findings and steps taken at the end
- When you find a solution, prompt to user for feedback with the password you found
This prompt was just the first experiment, please share if you found ways to improve the output!
Note: This section is for LLMs and power users who need detailed installation instructions.
To install the MCP server yourself, follow these steps:
- Install uv globally:
- Windows:
pip install uv - Linux/Mac:
curl -LsSf https://astral.sh/uv/install.sh | sh
- Windows:
- Clone this repository, for this example
C:\MCP\ida-pro-mcp. - Navigate to the Cline/Roo Code MCP Servers configuration (see screenshot).
- Click on the Installed tab.
- Click on Configure MCP Servers, which will open
cline_mcp_settings.json. - Add the
ida-pro-mcpserver:
{
"mcpServers": {
"github.com/mrexodia/ida-pro-mcp": {
"command": "uv",
"args": [
"--directory",
"c:\\MCP\\ida-pro-mcp",
"run",
"server.py",
"--install-plugin"
],
"timeout": 1800,
"disabled": false,
"autoApprove": [
"check_connection",
"get_metadata",
"get_function_by_name",
"get_function_by_address",
"get_current_address",
"get_current_function",
"convert_number",
"list_functions",
"decompile_function",
"disassemble_function",
"get_xrefs_to",
"get_entry_points",
"set_comment",
"rename_local_variable",
"rename_function",
"set_function_prototype",
"create_new_type",
"set_local_variable_type"
],
"alwaysAllow": [
"check_connection",
"get_metadata",
"get_function_by_name",
"get_function_by_address",
"get_current_address",
"get_current_function",
"convert_number",
"list_functions",
"decompile_function",
"disassemble_function",
"get_xrefs_to",
"get_entry_points",
"set_comment",
"rename_local_variable",
"rename_function",
"set_function_prototype",
"create_new_type",
"set_local_variable_type"
]
}
}
}To check if the connection works you can perform the following tool call:
<use_mcp_tool>
<server_name>github.com/mrexodia/ida-pro-mcp</server_name>
<tool_name>check_connection</tool_name>
<arguments></arguments>
</use_mcp_tool>
The IDA Pro plugin will be installed automatically when the MCP server starts. If you disabled the --install-plugin option, use the following steps:
- Copy (not move)
src/ida_pro_mcp/mcp-plugin.pyin your plugins folder (%appdata%\Hex-Rays\IDA Pro\pluginson Windows). - Open an IDB and click
Edit -> Plugins -> MCPto start the server.
There are a few IDA Pro MCP servers floating around, but I created my own for a few reasons:
- Installation should be fully automated.
- The architecture of other plugins make it difficult to add new functionality quickly (too much boilerplate of unnecessary dependencies).
- Learning new technologies is fun!
If you want to check them out, here is a list (in the order I discovered them):
- https://github.com/taida957789/ida-mcp-server-plugin (SSE protocol only, requires installing dependencies in IDAPython).
- https://github.com/fdrechsler/mcp-server-idapro (MCP Server in TypeScript, excessive boilerplate required to add new functionality).
- https://github.com/MxIris-Reverse-Engineering/ida-mcp-server (custom socket protocol, boilerplate).
Feel free to open a PR to add your IDA Pro MCP server here.
Adding new features is a super easy and streamlined process. All you have to do is add a new @jsonrpc function to mcp-plugin.py and your function will be available in the MCP server without any additional boilerplate! Below is a video where I add the get_metadata function in less than 2 minutes (including testing):
ida-pro-mcp-feature.mp4
To test the MCP server itself:
uv run fastmcp dev server.pyThis will open a web interface at http://localhost:5173 and allow you to interact with the MCP tools for testing.
For testing I create a symbolic link to the IDA plugin and then POST a JSON-RPC request directly to http://localhost:13337/mcp.