A pure-python Binary Ninja plugin for Solana EBPF.
Be sure to install both bn-ebpf-solana and binary_ninja_mcp from the plugin manager
Tested on Binary Ninja 5.0.7486-Stable
This is only needed if you wish to tinker with the plugin to modify it.
Clone this repo in your Binja plugins folder, located in the user folder.
Now install the requirements :
- either by running
Install python3 modulein Binja'scommand palette(Ctrl + P) and install the following modules
lief
anthropic
fastmcp
tenacity
rust_demangler
pygments
anchorpy
solana
solders
- or by going to the user folder and installing the requirements.txt
Also for the MCP integration to work please install mcp globally (outside the binja venv) like so:
pip install mcp
See our introductory blog post.
Instruction lifting!
Solana SDK Structures!
Copy this directory into your Binary Ninja plugins folder and restart.
- Instruction Lifting: All EBPF instructions are lifted to LLIL
- Accurate Memory Maps: We implement Solana-specific memory maps (0x{1/2/3/4}00000000 addresses for data/stack/heap/input)
- Solana ELF Relocations: Solana-specific ELF relocations
- Syscall Function Signatures: Full signatures for all of the Solana syscalls
- (partial) Solana SDK Types: Type definitions for all Solana SDK objects. (fully complete for C, in-progress for Rust)
In order to use the MCP integration please set up your anthropic api key in the settings under
MCP settings > Anthropic API Key
You will now be able to use the side menu on the right, symbolized by an R. Click on any function to start prompting the model to call MCP actions, and to ultimately display a Rust version in the side panel
TODO:
- Solana SDK Signature Matching: Automatically match common Solana SDK functions.
[ScriptingProvider] ModuleNotFoundError: No module named 'lief'
Is lief installed?
Run the following in the Binja python console
import lief
lief.__version__If you get an error, refer to the Installation section