Stop Manually Reversing: Use Claude + Ghidra MCP Instead (Full Tutorial)

In this video I get too lazy to manually reverse engineer software, so I build a setup where Claude just does it for me using Ghidra + MCP. It’s basically me outsourcing pain to an AI and watching it work through a binary step by step like my unpaid intern. We set up Ghidra with MCP here first: https://github.com/LaurieWired/GhidraMCP Then I let Claude take over the reverse engineering process end to end, which is both impressive and slightly worrying if you think about it too long. (Btw important note this is not for replacing human hackers, it's a tool to help not replace and it cannot replace human intelligence, I simply do an end to end demo to showcase the capability on a real static analysis case) If you want to go deeper into this kind of stuff, I run a private group where I basically teach everything I actually use in real work: 1 on 1 sessions where I walk through bug bounty methodology live Recorded live bug bounty hunting sessions (full unedited thinking process, not just highlights) Full cheat sheet library, tools, notes, workflows, and homelab setups Private breakdowns of real targets and how I approach them Guest sessions from other operators including a top 3000 ranked global Web3 hacker (shoutout 0bit) Weekly live sessions covering hardware hacking, IoT exploitation, bug bounty strategy, smart contract analysis, Active directory, network pentesting, Wifi hacking and so much more It’s less “course” and more “here is everything I know and everything I break, in real time on call with you” Join here if you want in (it's cheap af, like take whatever number you're thinking and half it): https://zipher-hunters.framer.website If you just want the cheat sheets and notes without joining the group, I also make them available individually as a resource pack here: https://buymeacoffee.com/0days/extras This is basically the point where automation stops being a gimmick and starts being “why am I still manually doing 99% of this” Either way, Claude is now part of the workflow whether we like it or not. 0:00 - Disclaimer 0:16 - Introduction to Ghidra MCP server and reverse engineering concept 0:40 - What Ghidra does (disassembly and decompilation explained) 1:00 - What MCP (Model Context Protocol) is and how it connects AI to tools 1:22 - GitHub project overview and required setup (Ghidra, Python, MCP SDK) 1:48 - Downloading and installing the MCP release 2:14 - Running Ghidra and environment setup (WSL/Kali context) 2:36 - Overview of the CrackMe reverse engineering challenge 2:50 - Installing Ghidra extension and initial configuration 3:11 - Connecting Claude to the MCP server (config setup) 3:52 - Importing the binary into Ghidra 4:41 - Analyzing the binary and enabling plugins 5:23 - Understanding assembly and decompiled C code in Ghidra 6:30 - Using Claude with MCP to solve the CrackMe challenge 7:31 - Claude interacting with Ghidra tools (decompile, analyze strings) 8:20 - AI reasoning through the binary and identifying password logic 9:02 - Following cross-references and reverse engineering strategy 10:26 - Benefits of using AI to speed up reverse engineering tasks 10:51 - Handling obfuscation and runtime string construction 12:04 - Visual graph breakdown of the program logic 13:10 - Verifying the solution (password found, access granted) 13:49 - Results and effectiveness of AI-assisted reverse engineering 14:05 - Static vs dynamic analysis discussion and limitations 14:50 - Anti-debugging tricks and obfuscation techniques explained 15:44 - Final thoughts on MCP + AI for ethical hacking workflows 16:29 - Advice on using AI for productivity in cybersecurity 16:49 - Upcoming content and closing remarks Music used/Credits: Attribution Code "Flutey Funk" Kevin MacLeod (incompetech.com) Licensed under Creative Commons: By Attribution 4.0 License http://creativecommons.org/licenses/b... Attribution Code "Aces High" Kevin MacLeod (incompetech.com) Licensed under Creative Commons: By Attribution 4.0 License http://creativecommons.org/licenses/b... Attribution Code "Funky Chunk" Kevin MacLeod (incompetech.com) Licensed under Creative Commons: By Attribution 4.0 License http://creativecommons.org/licenses/b...