SourcePulse logo
HomeBrowse all repos

pwno-mcp  by pwno-io

Autonomous binary exploitation and research system for LLM agents

Created 10 months ago
268 stars

Top 95.6% on SourcePulse

GitHubView on GitHub
Project Summary

Summary

pwno-mcp is a stateful system for autonomous pwn and binary research, engineered for LLM agents. It provides an isolated, controlled environment for debugging and exploit development, enabling efficient, automated binary analysis for security researchers.

How It Works

The core approach involves running GDB with pwndbg within an isolated Docker container, exposing stateful debugging, exploit I/O, and tooling via an MCP interface. This design allows LLM agents programmatic interaction, offering deterministic execution control, rapid context snapshots (registers, stack, disassembly, source, backtrace), and interactive exploit-driver workflows.

Quick Start & Requirements

Installation is Docker-based. A local workspace directory is needed for target binaries. The primary command runs a container with elevated privileges (SYS_PTRACE, SYS_ADMIN) and relaxed security (seccomp=unconfined, apparmor=unconfined), mounting the workspace.

docker run --rm -p 5500:5500 \
  --cap-add=SYS_PTRACE \
  --cap-add=SYS_ADMIN \
  --security-opt seccomp=unconfined \
  --security-opt apparmor=unconfined \
  -v "$PWD/workspace:/workspace" \
  ghcr.io/pwno-io/pwno-mcp:latest

The default MCP endpoint is http://127.0.0.1:5500/mcp. Comprehensive documentation is at docs.pwno.io.

Highlighted Details

  • Stateful GDB + pwndbg debugger sessions.
  • Deterministic execution control via GDB/MI.
  • Fast context snapshots (registers, stack, disassembly, source, backtrace).
  • Interactive exploit-driver workflows with pwncli.
  • Multi-session support for parallel workflows.
  • Workspace automation helpers (commands, processes, Python, RetDec).
  • HTTP and stdio transport support.

Maintenance & Community

Issues and pull requests are welcomed. The README does not specify community channels (e.g., Discord, Slack) or details on core contributors or sponsorships.

Licensing & Compatibility

Licensed under CC BY-NC-ND 4.0 (Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International). This license prohibits commercial use and derivative works. Commercial licensing inquiries should be directed to oss@pwno.io.

Limitations & Caveats

The CC BY-NC-ND 4.0 license imposes significant restrictions, prohibiting commercial use and modifications, thus limiting adoption to non-commercial research and personal projects. The system is optimized for LLM agent integration, with advanced features like WebSocket streaming, memory analysis, heap exploitation, ROP generation, and symbolic execution listed as future enhancements.

Health Check
Last Commit

2 months ago

Responsiveness

Inactive

Pull Requests (30d)
1
Issues (30d)
0
Star History
20 stars in the last 30 days

Explore Similar Projects

pwncli by RoderickChan

0%
434
CLI tool for pwn challenges, streamlining debugging and exploitation
Created 4 years ago
Updated 1 month ago

llm-debugger-vscode-extension by mohsen1

0%
357
VS Code extension for LLM-assisted program debugging
Created 1 year ago
Updated 1 year ago
Starred by Yaowei Zheng Yaowei Zheng(Author of LLaMA-Factory).

mcp-server-code-execution-mode by elusznik

0.3%
332
Code execution bridge for LLM agents
Created 6 months ago
Updated 5 months ago

eva by usepr

3.4%
274
Lightweight, single-file agent for local and remote LLM execution
Created 1 month ago
Updated 16 hours ago

BoxPwnr by 0ca

1.0%
401
Agentic LLM security challenge solver
Created 1 year ago
Updated 1 week ago

community-plugins by Vector35

0.3%
577
Binary Ninja plugin repository for reverse engineering
Created 9 years ago
Updated 1 day ago

DeepZero by 416rehman

7.1%
471
AI-powered vulnerability research framework
Created 1 month ago
Updated 4 weeks ago
Starred by Dan Guido Dan Guido(Cofounder of Trail of Bits).

Rikugan by buzzer-re

0.2%
628
AI-powered reverse-engineering agent for binary analysis
Created 2 months ago
Updated 16 hours ago

binary_ninja_mcp by fosdickio

2.0%
361
AI-powered reverse engineering integration for Binary Ninja
Created 1 year ago
Updated 1 month ago
Starred by Dan Guido Dan Guido(Cofounder of Trail of Bits).

anamnesis-release by SeanHeelan

0%
623
LLM agents automatically generate exploits, bypassing complex security defenses
Created 4 months ago
Updated 3 months ago
Starred by Tobi Lutke Tobi Lutke(Cofounder of Shopify), Samuel Colvin Samuel Colvin(Founder and Author of Pydantic), and
14 more.

monty by pydantic

0.6%
7k
A secure, minimal Python interpreter for AI agents
Created 3 years ago
Updated 19 hours ago
Starred by Alexey Milovidov Alexey Milovidov(Cofounder of Clickhouse), Marc Klingen Marc Klingen(Cofounder of Langfuse), and
20 more.

langfuse by langfuse

1.3%
28k
Open source LLM engineering platform for observability and evals
Created 3 years ago
Updated 10 hours ago
Feedback? Help us improve.