This IDA Pro plugin leverages large language models (LLMs) like OpenAI's GPT-3.5-turbo and DeepSeek to assist reverse engineers in analyzing binary files. It aims to accelerate the reverse engineering process by automating tasks such as function analysis, variable renaming, vulnerability identification, and even EXP generation, targeting security researchers and malware analysts.

How It Works

The plugin integrates with IDA Pro's Python 3 environment, allowing users to interact with LLMs via API calls. It processes disassembled code, function descriptions, and potentially other binary artifacts to generate human-readable analysis, code suggestions, and vulnerability reports. The approach utilizes LLMs for semantic understanding and code generation, aiming to provide insights beyond traditional static analysis tools.

Quick Start & Requirements

• Install dependencies: pip install -r requirements.txt (includes anytree from v2.3).
• Configure API key and model in WPeChatGPT.py.
• Copy WPeChatGPT.py and Auto-WPeGPT_WPeace folder to IDA's plugins directory.
• Requires IDA Pro with Python 3 environment.
• OpenAI Python package needs to be updated for versions >= 2.0.
• For API connection issues, urllib3 might need to be downgraded to 1.25.11. Proxy settings can be configured.

Highlighted Details

• Supports OpenAI (gpt-3.5-turbo, text-davinci-003) and DeepSeek models.
• Features include function analysis, variable renaming, vulnerability finding, and EXP generation.
• Auto-WPeGPT module provides automated binary analysis with output files for results, call trees, and strings.
• Updated to support newer OpenAI Python package versions and proxy configurations.

Maintenance & Community

• Last update mentioned is v2.6 (2025-02-17), indicating recent development.
• Project is based on and inspired by Gepetto (https://github.com/JusticeRage/Gepetto).
• Contact information (email) is provided for issues.

Licensing & Compatibility

• The README does not explicitly state a license. Compatibility for commercial use or closed-source linking is not specified.

Limitations & Caveats

• Analysis results are for reference only.
• Auto-WPeGPT may encounter token limits with large binaries, affecting analysis quality.
• API errors are noted, with potential workarounds involving urllib3 version and proxy settings.