home / mcp / so analyzer mcp server

SO Analyzer MCP Server

Provides native SO analysis, Flutter SSL bypass, and cross-reference capabilities for APKs and Flutter binaries.

Installation

Add the following to your MCP client configuration file.

Configuration

{
  "mcpServers": {
    "1600822305-so-analyzer-mcp": {
      "command": "python",
      "args": [
        "K:/path/to/so-analyzer-mcp/run_server.py"
      ]
    }
  }
}

SO Analyzer MCP is an open-source analysis toolkit that operates as an MCP server to inspect, patch, and decompile native libraries inside Android APKs. It provides Flutter SSL bypass, function and control-flow analysis, symbol cross-references, and a suite of utilities to dissect SO files and Flutter binaries. You can run it locally as an MCP server and access a wide range of analysis tools through an MCP client.

How to use

Set up your MCP client to connect to the SO Analyzer MCP server, then run tools to inspect or modify native libraries found inside APKs. The server exposes a collection of utilities that you can invoke from your MCP client to list libraries, detect Flutter components, extract SO files, search symbols, decompile, and perform advanced analyses like call graphs and control-flow graphs.

How to install

Prerequisites you need on your machine before installing are Python and a working network that can reach your MCP client. You will install dependencies and then run the MCP server script.

Available tools

so_check_env

Check the analysis environment to ensure all required tools and libraries are available.

so_list_libs

List all SO libraries present in the APK.

so_extract

Extract a specified SO library from the APK.

so_info

Retrieve basic information about an SO file.

so_exports

Get the list of exported symbols from an SO.

so_imports

Get the list of imported symbols for an SO.

so_strings

Extract strings from an SO file.

so_search_symbol

Search for specific symbols inside an SO.

flutter_detect

Detect whether the APK uses Flutter.

flutter_get_version

Obtain the Flutter version used by the APK.

flutter_find_ssl

Find SSL verification-related functions in Flutter apps.

flutter_ssl_offset_v2

Intelligently locate SSL-related functions in Flutter binaries.

flutter_patch_ssl

Patch SSL verification to bypass certificate checks.

flutter_patch_apk

One-click patch to Flutter APKs for SSL/verification bypass.

so_patch_bytes

Modify bytes at a specified offset in an SO.

so_search_bytes

Search for a pattern of bytes within an SO.

so_replace_bytes

Find and replace a byte sequence within an SO.

so_disassemble

Disassemble code within an SO to view assembly.

so_get_function_bytes

Retrieve the bytecode of a specific function.

so_xref_string

Find cross-references to a given string inside the binary.

so_find_function

Find a function by its address.

so_analyze_function

Analyze features and characteristics of a function.

so_get_sections

Get information about code sections in an SO.

so_list_all_functions

Identify all functions, including non-exported ones.

so_callgraph

Generate a call graph and DOT representation of function calls.

so_get_cfg

Generate a control-flow graph and DOT representation.

so_analyze_function_advanced

Comprehensive advanced analysis of a function.

so_decompile

Decompile code to produce pseudocode.

so_detect_encryption

Detect string encryption patterns within data.

so_trace_register

Trace data flow and register usage across instructions.

so_check_radare2

Verify the presence and readiness of radare2 for analysis.

so_check_ghidra

Verify the presence and readiness of Ghidra for analysis.