IDA+MCP解CTF题尝试

一、cursor准备

下载配置cursor

上述配置放到cursor中

image-20251023163219696

这里我用的cursor,就没用其他平台的api-key了

二、配置ida-mcp

下载解压ida pro(别的师傅的链接)

1
2
3
通过网盘分享的文件:IDA Professional 9.1.7z
链接: https://pan.baidu.com/s/11XkBzv_PHWGzWGXjSqWWQg?pwd=Alex 提取码: Alex 
--来自百度网盘超级会员v2的分享

进入python311目录并打开终端

安装MCP

项目地址https://github.com/mrexodia/ida-pro-mcp

1
python.exe -m pip install --upgrade git+https://github.com/mrexodia/ida-pro-mcp

image-20251106175010606

1
2
3
"E:\IDA Professional 9.1\python311\Scripts\ida-pro-mcp.exe" --install
"E:\IDA Professional 9.1\python311\Scripts\ida-pro-mcp.exe" --config

保存记录好config

1
2
3
4
5
6
7
8
9
10
11
12
{
  "mcpServers": {
    "ida-pro-mcp": {
      "command": "E:\\IDA Professional 9.1\\python311\\python.exe",
      "args": [
        "E:\\IDA Professional 9.1\\python311\\Lib\\site-packages\\ida_pro_mcp\\server.py"
      ],
      "timeout": 1800,
      "disabled": false
    }
  }
}

上述文件写入之后cursor会自动配置插件

后面了解到还有GBD-MCP我也配置了一下

项目地址:https://github.com/smadi0x86/GDB-MCP

简单配置一下环境运行起来即可

实现两个mcp的config

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
{
  "mcpServers": {
    "ida-pro-mcp": {
      "command": "E:\\IDA Professional 9.1\\python311\\python.exe",
      "args": [
        "E:\\IDA Professional 9.1\\python311\\Lib\\site-packages\\ida_pro_mcp\\server.py"
      ],
      "timeout": 1800,
      "disabled": false,
      "autoApprove": [
      ],
      "alwaysAllow": []
      ]
    }
    ,"gdb-mcp": {
      "command":  "E:\\IDA Professional 9.1\\python311\\python.exe",
      "args": ["E:\\IDA Professional 9.1\\python311\\gdb-mcp-server-main\\mcp_server.py"],
      "timeout": 1800,
      "disabled": false
      
  }    
}
}

上面是我的配置框架,把路径改了就好了

image-20251024142642236

三、如何使用

用ida pro把题目反编译

image-20251024141920513

Edit->plugins->MCP

还要启动GDB-MCP

1
"E:\IDA Professional 9.1\python311\python.exe" mcp_server.py

之后来到cursor跟ai开始对话

试了几道题,均可成功解出

[CISCN 2019华北]PWN1

img

[CISCN 2023 初赛]烧烤摊儿:

img

[HGAME 2023 week1]simple_shellcode:

img