Radare2 Disassembler
๐๐ช๐ง๐ ๐ - MCP server for Radare2 disassembler. Provides AI with capability to disassemble and look into binaries for reverse engineering.
What is Radare2 Disassembler?
Radare2 Disassembler is a Model Context Protocol (MCP) server that allows AI assistants like Claude, Cursor, and VS Code to ๐๐ช๐ง๐ ๐ - mcp server for radare2 disassembler. provides ai with capability to disassemble and look into binaries for reverse engineering.
๐๐ช๐ง๐ ๐ - MCP server for Radare2 disassembler. Provides AI with capability to disassemble and look into binaries for reverse engineering.
This server falls under the Security category on MCPgee, the world's largest MCP server directory with 33,000+ servers.
Features
- ๐๐ช๐ง๐ ๐ - MCP server for Radare2 disassembler. Provides AI wit
Use Cases
Maintainer
Works with
Installation
Manual Installation
npx radare2Configuration
Configuration Details
claude_desktop_config.json
Performance
Response Metrics
Resource Usage
How to Set Up and Use Radare2 Disassembler
The Radare2 MCP server bridges AI assistants with radare2 โ a powerful open-source binary analysis framework โ enabling reverse engineering workflows through natural language. It exposes radare2's disassembly, analysis, and scripting capabilities as MCP tools, allowing AI agents to open binaries, disassemble functions, examine memory layouts, and run r2 commands or r2js scripts against local or remote sessions. Security researchers and malware analysts use it to accelerate binary analysis without manually composing complex r2 command sequences.
Prerequisites
- Radare2 installed (version 5.9+ recommended; install via `r2pm -Uci r2mcp` or from https://rada.re)
- r2pm package manager (bundled with radare2)
- Claude Desktop, VS Code with MCP, Zed, or another MCP-compatible client
- Basic familiarity with binary analysis concepts (ELF/PE/Mach-O formats)
Install radare2
Install radare2 and its package manager on your system. The r2pm tool is used to install and manage the r2mcp plugin.
# macOS
brew install radare2
# or from source
git clone https://github.com/radareorg/radare2 && cd radare2 && sys/install.shInstall the r2mcp plugin via r2pm
Use r2pm to update the package index and install the r2mcp MCP server plugin. This is the recommended installation method.
r2pm -Uci r2mcpAdd the server to your MCP client configuration
Add r2mcp to your Claude Desktop or VS Code config. The server is launched via r2pm -r r2mcp, which handles loading the plugin into a radare2 session.
{
"mcpServers": {
"radare2": {
"command": "r2pm",
"args": ["-r", "r2mcp"]
}
}
}Restart your MCP client
Restart Claude Desktop or reload MCP servers in VS Code so the radare2 server is discovered and initialized.
Open a binary for analysis
Ask your AI assistant to open a binary file and begin analysis. The server will spawn a radare2 session connected to the specified file.
(Optional) Enable HTTP server mode for remote sessions
To connect to a remote or already-running radare2 session, start r2mcp with HTTP mode. Use -a to require bearer token authentication.
r2pm -r r2mcp -H 8080 -a mytokenRadare2 Disassembler Examples
Client configuration
Claude Desktop configuration using r2pm to launch the r2mcp server. For VS Code, use the servers key with type: stdio.
{
"mcpServers": {
"radare2": {
"command": "r2pm",
"args": ["-r", "r2mcp"]
}
}
}Prompts to try
Use these prompts with a binary file path to drive radare2 analysis through your AI assistant.
- "Open /tmp/sample.elf and list all functions found by auto-analysis"
- "Disassemble the main function in /tmp/crackme and explain what it does"
- "Find all calls to strcmp in this binary and show the surrounding instructions"
- "Look for suspicious strings in /tmp/malware.bin and summarize your findings"
- "Run r2 analysis on this PE file and identify the entry point and imports"Troubleshooting Radare2 Disassembler
r2pm command not found after installing radare2
r2pm is bundled with radare2. Ensure radare2 is on your PATH by running `r2 -v`. On macOS with Homebrew, run `brew link radare2`. On Linux, you may need to add `/usr/local/bin` to your PATH.
r2pm -Uci r2mcp fails or plugin not found
First run `r2pm -U` alone to update the package index, then `r2pm -ci r2mcp` to install. If the package still isn't found, build from source: `git clone https://github.com/radareorg/radare2-mcp && make install`.
MCP client cannot connect to r2mcp in HTTP mode
When using HTTP mode (`-H <port>`), set the R2MCP_AUTH_TOKEN environment variable or pass `-a <token>` and include the Authorization: Bearer header in your client. Ensure no firewall is blocking the chosen port.
Frequently Asked Questions about Radare2 Disassembler
What is Radare2 Disassembler?
Radare2 Disassembler is a Model Context Protocol (MCP) server that ๐๐ช๐ง๐ ๐ - mcp server for radare2 disassembler. provides ai with capability to disassemble and look into binaries for reverse engineering. It connects AI assistants to external tools and data sources through a standardized interface.
How do I install Radare2 Disassembler?
Follow the installation instructions on the Radare2 Disassembler GitHub repository. Clone the repo, install dependencies, and add the server config to your AI client.
Which AI clients work with Radare2 Disassembler?
Radare2 Disassembler works with all major MCP-compatible AI clients including Claude Desktop, Claude Code, Cursor, VS Code (GitHub Copilot), Windsurf, and Cline.
Is Radare2 Disassembler free to use?
Yes, Radare2 Disassembler is open source and available under the MIT license. You can use it freely in both personal and commercial projects.
Radare2 Disassembler Alternatives โ Similar Security Servers
Looking for alternatives to Radare2 Disassembler? Here are other popular security servers you can use with Claude, Cursor, and VS Code.
Casdoor
โ 13.6kAn open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI supporting OpenClaw, MCP, OAuth, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD
ghidraMCP
โ 9.0kAn Model Context Protocol server that enables LLMs to autonomously reverse engineer applications by exposing Ghidra's decompilation and analysis tools. It allows AI agents to list code structures, rename methods, and analyze binaries directly through
HexStrike AI
โ 8.9kHexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug bounty automation, and security research. Seamlessly b
IDA Pro MCP
โ 8.7kEnables AI-assisted reverse engineering in IDA Pro by providing tools to analyze binaries, decompile functions, manage comments, search patterns, and interact with the IDA database through natural language.
Anthropic Cybersecurity Skills
โ 6.6k754 structured cybersecurity skills for AI agents ยท Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF ยท agentskills.io standard ยท Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platform
Hooker
โ 5.1k๐ฅ๐ฅ hooker is a Frida-based reverse engineering toolkit for Android. It offers a user-friendly CLI, universal scripts, auto hook generation, memory roaming to detect activities/services, one-click SOCKS5 proxy setup, Frida JustTrustMe, and BoringSSL u
Browse More Security MCP Servers
Explore all security servers available in the MCPgee directory. Each server includes setup guides for Claude, Cursor, and VS Code.
Set Up Radare2 Disassembler in Your Editor
Choose your AI client for step-by-step setup instructions.
Quick Config Preview
Add this to your claude_desktop_config.json or .cursor/mcp.json
Ready to use Radare2 Disassembler?
Browse our complete directory of 33,000+ MCP servers, read setup guides for your editor, and start building with the Model Context Protocol.