Add AngryGhidra-backed angr MCP tools#20
Merged
Conversation
rustopian
changed the title
rustopian
added a commit
that referenced
this pull request
May 23, 2026
Add AngryGhidra-backed angr MCP tools
rustopian
added a commit
that referenced
this pull request
May 23, 2026
Add AngryGhidra-backed angr MCP tools
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Adds AngryGhidra-backed and direct angr/Oxidizer analysis tools to the MCP bridge while keeping AngryGhidra optional. Normal Ghidra MCP tools continue to work without AngryGhidra; AngryGhidra-specific calls return clear setup errors when it is not installed.
New / updated MCP tools
angr_decompile_function: decompile a function with angr/Oxidizer, including Rust-oriented decompiler support and p-code language fallback where applicable.angr_check_setup: verify that the configured Python can import angr and optionally load the current binary.angr_symbolic_find: search for a symbolic path to a target address.engine="auto"prefers AngryGhidra when installed and compatible,engine="angryghidra"requires it, andengine="core"forces the direct angr helper.angr_annotate_symbolic_path: preview-first symbolic-path annotation. The dry run now shows each current comment that would be overwritten alongside the pending comment, returns a short-lived preview token, and refuses writes unless the exact same planned write is applied with that token.angr_solve_constraints_at: reach an address, apply JSON-described constraints over registers, memory, stdin, or argv, and evaluate requested values.angr_reachability: build an angr CFG and check static reachability between two addresses, optionally returning a path.angr_cfg_summary: summarize CFGFast output for a binary or function, including counts, blocks, and call sites.angr_callgraph_summary: summarize recovered callgraph counts and sampled call edges.angr_lift_block: lift a basic block to VEX, AIL, or both.angr_compare_decompilers: batch side-by-side Ghidra decompiler output and angr/Oxidizer output.angryghidra_check_setup: report the discovered AngryGhidra script and Python interpreter, or the optional-dependency error.angryghidra_symbolic_execute: run AngryGhidra's native symbolic execution flow with find/avoid addresses, symbolic argv, memory vectors, memory stores, registers, and hooks.get_comment: read the current disassembly or decompiler comment that a comment write would replace.New / updated Ghidra HTTP endpoints
/get_comment: read-only endpoint returning the current disassembly EOL comment or decompiler/pre comment for an address.angr_annotate_symbolic_pathnow uses/get_commentbefore minting or accepting a preview token.Safety behavior
angr_annotate_symbolic_path, and it can only write comments after an exact reviewed preview token match.