mrphrazer

mrphrazer / ghidra-headless-mcp

Public

Headless Ghidra MCP server — giving AI agents deep reverse-engineering capabilities.

35
1
100% credibility
Found Mar 09, 2026 at 21 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

This project provides a background service enabling AI assistants to perform comprehensive reverse engineering on binaries using Ghidra's capabilities without a graphical user interface.

How It Works

1
🔍 Discover the tool

You hear about a handy helper that lets your AI buddy dive deep into computer programs to uncover their secrets without needing a fancy screen.

2
💻 Get it ready

You download it to your computer and prepare it with a quick setup so it's all set to go.

3
🧠 Link analysis power

You connect it to your trusted analysis toolkit, giving your AI access to expert program-examining abilities.

4
🤖 Hook up your AI

You tell your AI assistant about this new helper, so it can use these super skills right away.

5
📂 Load a mystery program

You point it at a program file you want to understand, and open it up for inspection.

6
🔬 AI explores deeply

Your AI starts disassembling code, spotting patterns, fixing types, and building a clear picture of how it all works.

🎉 Unlock insights

You get easy-to-read reports and discoveries, making tough program analysis feel simple and powerful.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 21 to 35 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is ghidra-headless-mcp?

This Python project runs a headless Ghidra server over the MCP protocol, letting AI agents perform ghidra headless analysis, decompilation, disassembly, patching, and scripting on binaries without a GUI. It exposes 212 tools across 34 categories for program management, memory ops, types, xrefs, and decompiler tweaks, with read-only mode by default and transaction support for safe changes. Users get stdio or TCP transport, fake backend for testing, and easy Docker co-location with agent runtimes.

Why is it gaining traction?

Unlike ad-hoc ghidra headless scripts or GUI-dependent tools, it gives agents full, incremental control over Ghidra workflows—like updating types or running custom scripts—via standardized MCP calls. The hook is seamless integration with tools like Claude or Codex, plus pagination, background tasks, and pyghidra-backed headless ghidra decompile in containers. Devs dig the no-sidecar setup and fallback scripting for edge cases.

Who should use this?

Reverse engineers building AI agents for automated binary triage or malware analysis. Teams doing ghidra headless docker pipelines for fuzzing, patching, or decompiler-driven refactoring. Agent devs needing headless ghidra mcp access without wrestling Ghidra's Java UI.

Verdict

Grab it if you're prototyping agent-driven RE—solid tests, clear docs, and MCP stdio make it dead simple to spin up. With 18 stars and 1.0% credibility, it's early-stage but stable for niche use; watch for a license and broader adoption.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.