ida-pro-mcp MCP — 使用场景, 安装 & 实时演示

为什么要用

核心特性

Full decompilation and disassembly access from AI assistants
Symbol management: rename functions/variables, declare types, set comments
Pattern search: find bytes, instructions, regex across the binary
Complete debugger control: breakpoints, stepping, register/memory access
Headless analysis support via SSE transport and idalib

实时演示

实际使用效果

ida-pro-mcp.replay ▶ 就绪

0/0

安装

选择你的客户端

~/Library/Application Support/Claude/claude_desktop_config.json · Windows: %APPDATA%\Claude\claude_desktop_config.json

{
  "mcpServers": {
    "ida-pro-mcp": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/mrexodia/ida-pro-mcp"
      ]
    }
  }
}

打开 Claude Desktop → Settings → Developer → Edit Config。保存后重启应用。

~/.cursor/mcp.json · .cursor/mcp.json

{
  "mcpServers": {
    "ida-pro-mcp": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/mrexodia/ida-pro-mcp"
      ]
    }
  }
}

Cursor 使用与 Claude Desktop 相同的 mcpServers 格式。项目级配置优先于全局。

VS Code → Cline → MCP Servers → Edit

{
  "mcpServers": {
    "ida-pro-mcp": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/mrexodia/ida-pro-mcp"
      ]
    }
  }
}

点击 Cline 侧栏中的 MCP Servers 图标，然后选 "Edit Configuration"。

~/.codeium/windsurf/mcp_config.json

{
  "mcpServers": {
    "ida-pro-mcp": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/mrexodia/ida-pro-mcp"
      ]
    }
  }
}

格式与 Claude Desktop 相同。重启 Windsurf 生效。

~/.continue/config.json

{
  "mcpServers": [
    {
      "name": "ida-pro-mcp",
      "command": "TODO",
      "args": [
        "See README: https://github.com/mrexodia/ida-pro-mcp"
      ]
    }
  ]
}

Continue 使用服务器对象数组，而非映射。

~/.config/zed/settings.json

{
  "context_servers": {
    "ida-pro-mcp": {
      "command": {
        "path": "TODO",
        "args": [
          "See README: https://github.com/mrexodia/ida-pro-mcp"
        ]
      }
    }
  }
}

加入 context_servers。Zed 保存后热重载。

claude mcp add ida-pro-mcp -- TODO 'See README: https://github.com/mrexodia/ida-pro-mcp'

一行命令搞定。用 claude mcp list 验证，claude mcp remove 卸载。

使用场景

实战用法： ida-pro-mcp

How to reverse engineer a binary with AI assistance in IDA Pro

👤 Reverse engineers and security researchers analyzing binaries they own or have authorization to test ⏱ ~60 min advanced

何时使用： You have a binary loaded in IDA Pro and want AI to help understand and annotate it.

前置条件

IDA Pro 8.3+ (not IDA Free) — Commercial license from Hex-Rays
ida-pro-mcp installed — pip install <repo-url> && ida-pro-mcp --install

步骤

Get an overview

List all functions in this binary. Which ones look like they handle network communication based on their names and imports?✓ 已复制

→ Categorized function list with network-related functions highlighted
Decompile key functions

Decompile the main network handler function. Explain the protocol it implements and rename variables to be descriptive.✓ 已复制

→ Decompiled C code with renamed variables and protocol analysis
Trace data flow

Find all cross-references to the encryption key buffer. Who reads it and who writes it?✓ 已复制

→ Xref chain showing data flow from key generation to encryption calls

结果： A well-annotated IDB with key functions understood, renamed, and documented.

注意事项

Decompilation can be slow on large functions — Start with smaller callees and work up. Use disasm() for quick overviews.

搭配使用： filesystem

Solve a CTF reverse engineering challenge using IDA Pro and AI

👤 CTF participants working on binary reversing challenges ⏱ ~45 min intermediate

何时使用： You have a CTF binary that needs static and/or dynamic analysis to find the flag.

前置条件

IDA Pro with ida-pro-mcp — Install and connect

步骤

Find the validation logic

Search for strings containing 'flag', 'correct', 'wrong'. Decompile the functions that reference them.✓ 已复制

→ Validation function with flag-checking logic
Debug to extract the flag

Set a breakpoint at the comparison. Run the binary with input 'AAAA' and show me what it compares against.✓ 已复制

→ Expected flag value visible in registers or memory

结果： Flag extracted through combined static and dynamic analysis.

注意事项

Anti-debug tricks prevent breakpoint hits — Use find_insns to locate anti-debug checks and patch them with patch_asm

组合

与其他 MCP 搭配，撬动十倍杠杆

ida-pro-mcp + filesystem

Export decompiled code and analysis notes to files

Decompile all functions related to the crypto module and save the annotated code to ~/analysis/crypto.c.✓ 已复制

工具

此 MCP 暴露的能力

工具	输入参数	何时调用
decompile	address_or_name: str	Decompile a function to C pseudocode
disasm	address: str, count?: int	Disassemble instructions at an address
rename	old_name: str, new_name: str	Rename a function or variable
xrefs_to	address: str	Find all cross-references to an address
find_bytes	pattern: str	Search for a byte pattern in the binary
patch_asm	address: str, asm: str	Patch assembly instructions at an address
dbg_run	none	Start the debugger
set_comments	address: str, comment: str	Add a comment at an address

成本与限制

运行它的成本

API 配额: N/A — local IDA Pro instance
每次调用 Token 数: 200–3000 tokens (decompilation output can be large)
费用: Requires IDA Pro commercial license ($). The MCP plugin itself is free.
提示: Use list_funcs to identify targets before decompiling to avoid decompiling every function.

安全

权限、密钥、影响范围

凭据存储： N/A — local tool

数据出站： All analysis is local. No network calls from the MCP server.

⚠ This tool is designed for authorized security research, CTF competitions, and defensive analysis only. Do not use it against systems you don't own or have written authorization to test.
Patching binaries modifies the IDB. Use IDA's snapshot feature before making changes.
Debugger operations execute the target binary — only debug in sandboxed environments.

故障排查

常见错误与修复

ida-pro-mcp --install fails

Ensure Python 3.11+ and IDA Pro 8.3+ are installed. The installer needs to find IDA's plugin directory.

验证： python3 --version && which idat

Decompilation fails

Not all functions decompile cleanly (obfuscation, hand-written assembly). Try disasm() as a fallback.

验证： Try decompiling a simpler function first

Debugger won't start

Ensure IDA's debugger is configured for the target platform (local, remote, etc.). Check that the binary is not already running.

验证： Check IDA's debugger settings

替代方案

ida-pro-mcp 对比其他方案

替代方案	何时用它替代	权衡
GhidrAssistMCP	You prefer free Ghidra over commercial IDA Pro	Ghidra is free but IDA Pro generally has faster analysis and wider format support
reverse-engineering-assistant	You want a Ghidra MCP with a tool-driven approach optimized for LLMs	Fewer tools but better context management for AI interaction

ida-pro-mcp

为什么要用

核心特性

实时演示

实际使用效果

安装

选择你的客户端

使用场景

实战用法： ida-pro-mcp

How to reverse engineer a binary with AI assistance in IDA Pro

前置条件

步骤

注意事项

Solve a CTF reverse engineering challenge using IDA Pro and AI

前置条件

步骤

注意事项

组合

与其他 MCP 搭配，撬动十倍杠杆

工具

此 MCP 暴露的能力

成本与限制

运行它的成本

安全

权限、密钥、影响范围

故障排查

常见错误与修复

替代方案

ida-pro-mcp 对比其他方案

更多

资源