High-risk tools in Ida Domain

High severity Ida Domain MCP Server 13 of 74 tools

13 of the 74 tools in Ida Domain are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

callgraph Execute

Build call graph starting from root functions
dbg_run_to Execute

Run to address
dbg_start Execute

Start debugger
py_eval Execute

Execute Python code in IDA context
dbg_continue Execute

Continue debugger
dbg_exit Execute

Exit debugger
dbg_step_into Execute

Step into
dbg_step_over Execute

Step over
infer_types Execute

Infer types
dbg_enable_bp Execute

Enable/disable breakpoints
dbg_write_mem Execute

Write debug memory
open_database Execute

open_database
patch_asm Execute

Patch assembly instructions at addresses

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Ida Domain

Tools at high risk

Attacks that target this class

More on Ida Domain

Enforce policy on every Ida Domain tool call.