MCP Server Policy

GHIDRA MCP POLICY

Enforce policies on every tool call to the Ghidra MCP Server. 27 tools listed, categorised, and ready for rules.

LaurieWired/GhidraMCP 19 read 8 write 27 tools total

reverse-engineering ghidra binary-analysis decompilation malware-analysis

GET STARTED

Download this policy scaffold and add your rules. Intercept enforces them on every tool call before it reaches Ghidra.

terminal

# Download policy scaffold


curl -o ghidra.yaml https://raw.githubusercontent.com/policylayer/intercept/main/policies/ghidra.yaml

# Run with Intercept


intercept --policy ghidra.yaml -- npx -y @LaurieWired/GhidraMCP

Server documentation: https://github.com/LaurieWired/GhidraMCP

READ TOOLS

list_methods List all methods/functions in the binary

list_classes List all classes defined in the binary

list_functions List all functions in the binary

list_segments List all memory segments in the binary

list_imports List all imported symbols

list_exports List all exported symbols

list_namespaces List all namespaces in the binary

list_data_items List labelled data items with pagination

list_strings List all strings found in the binary

search_functions_by_name Search functions by name substring

get_function_by_address Retrieve function info for a given address

get_current_address Get the address currently selected in Ghidra

get_current_function Get the function currently selected in Ghidra

get_xrefs_to Get cross-references pointing to a given address

get_xrefs_from Get cross-references originating from a given address

get_function_xrefs Get cross-references for a named function

decompile_function Decompile a function by name

decompile_function_by_address Decompile a function at a given address

disassemble_function Get raw disassembly for a function

WRITE TOOLS

rename_function Rename a function by its current name

rename_function_by_address Rename a function by its memory address

rename_data Rename a data label at a given address

rename_variable Rename a local variable within a function

set_decompiler_comment Add a comment in the decompiler view

set_disassembly_comment Add a comment in the disassembly view

set_function_prototype Set the type signature of a function

set_local_variable_type Set the data type of a local variable

POLICY YAML

This scaffold lists every tool with empty rules. Add conditions — rate limits, argument validation, deny rules — then deploy with Intercept.

ghidra.yaml

version: "1"
description: "Policy for LaurieWired/GhidraMCP"
default: "allow"
tools:
    list_methods:
        rules: []
    list_classes:
        rules: []
    list_functions:
        rules: []
    list_segments:
        rules: []
    list_imports:
        rules: []
    list_exports:
        rules: []
    list_namespaces:
        rules: []
    list_data_items:
        rules: []
    list_strings:
        rules: []
    search_functions_by_name:
        rules: []
    get_function_by_address:
        rules: []
    get_current_address:
        rules: []
    get_current_function:
        rules: []
    get_xrefs_to:
        rules: []
    get_xrefs_from:
        rules: []
    get_function_xrefs:
        rules: []
    decompile_function:
        rules: []
    decompile_function_by_address:
        rules: []
    disassemble_function:
        rules: []
    rename_function:
        rules: []
    rename_function_by_address:
        rules: []
    rename_data:
        rules: []
    rename_variable:
        rules: []
    set_decompiler_comment:
        rules: []
    set_disassembly_comment:
        rules: []
    set_function_prototype:
        rules: []
    set_local_variable_type:
        rules: []

FREQUENTLY ASKED QUESTIONS

What tools does the Ghidra MCP server expose?

The Ghidra MCP Server exposes 27 tools across 2 categories: Read, Write. Each tool can be individually controlled with Intercept policies.

How do I enforce policies on Ghidra?

Download the policy scaffold, add rules (rate limits, argument validation, deny rules), then run Intercept as a proxy in front of the Ghidra MCP server. Every tool call is evaluated against your YAML policy before execution.

Is the Ghidra policy free to use?

Yes. All Intercept policies are open source under the Apache 2.0 licence. Download, modify, and deploy without restrictions.

ENFORCE POLICIES ON GHIDRA

Open source. One binary. Zero dependencies.

VIEW ON GITHUB Browse all policies →

GHIDRA MCP POLICY

GET STARTED

READ TOOLS

list_methods

list_classes

list_functions

list_segments

list_imports

list_exports

list_namespaces

list_data_items

list_strings

search_functions_by_name

get_function_by_address

get_current_address

get_current_function

get_xrefs_to

get_xrefs_from

get_function_xrefs

decompile_function

decompile_function_by_address

disassemble_function

WRITE TOOLS

rename_function

rename_function_by_address

rename_data

rename_variable

set_decompiler_comment

set_disassembly_comment

set_function_prototype

set_local_variable_type