{"id":"s4dp4nd4-frida-c2-mcp","name":"frida-c2-mcp","homepage":null,"repo_url":"https://github.com/s4dp4nd4/frida-c2-mcp","category":"security","subcategories":[],"tags":["mcp","frida","mobile-security","dynamic-instrumentation","http-transport","agentic-automation","proof-of-concept"],"what_it_does":"frida-c2-mcp (FridaC2MCP) is an MCP server that exposes Frida dynamic instrumentation over a networked, streamable HTTP transport. It is intended to run entirely on rooted Android and jailbroken iOS devices, translating MCP/HTTP requests into Frida operations such as process/application management, attaching sessions, and executing/injecting bundled JavaScript Frida scripts.","use_cases":["Agent-driven mobile security testing and automated dynamic instrumentation on-device","Remote orchestration of Frida sessions via MCP-compatible clients (e.g., Gemini CLI / Claude Code)","Attaching to running mobile processes and injecting hooks/scripts remotely","Multi-device automated workflows for instrumentation and analysis"],"not_for":["Production use on shared/public networks","Environments requiring secure remote access or strong authentication","Use cases that disallow rooting/jailbreaking or dynamic code instrumentation","Workflows that need robust session management and safe multi-tenant isolation"],"best_when":"Used on isolated networks for proof-of-concept experimentation, where the operator controls the device and network and understands the risks of exposing instrumentation capabilities over HTTP.","avoid_when":"Avoid on public/shared networks or any environment where untrusted parties might reach the device endpoint; avoid if you need encryption/authentication, strong auditability, or stable session semantics.","alternatives":["frida-mcp over stdio (local transport) for safer, more controlled deployments","Standalone Frida tooling (frida-server + local client) without networked MCP exposure","Other agent/tool frameworks integrating with Frida locally rather than running a remote C2-style server"],"af_score":30.2,"security_score":11.2,"reliability_score":22.5,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T15:23:46.465404+00:00","interface":{"has_rest_api":true,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":"http://<DEVICE_IP>:6767/mcp (example from README)","has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":[],"oauth":false,"scopes":false,"notes":"README/disclaimer indicates lack of any form of security for communication: unencrypted and unauthenticated. No auth methods or scope model are documented."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source project; pricing not applicable."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":30.2,"security_score":11.2,"reliability_score":22.5,"mcp_server_quality":55.0,"documentation_accuracy":55.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":0.0,"rate_limit_clarity":0.0,"tls_enforcement":0.0,"auth_strength":0.0,"scope_granularity":0.0,"dependency_hygiene":35.0,"secret_handling":30.0,"security_notes":"High-risk remote instrumentation C2-style design. README disclaimer states communication is unencrypted and unauthenticated. No session management and no form of security are provided according to the documentation. Dependency hygiene cannot be fully verified from the provided content; iOS includes many custom-built components, which increases supply-chain/patch-management considerations.","uptime_documented":0.0,"version_stability":40.0,"breaking_changes_history":30.0,"error_recovery":20.0,"idempotency_support":"false","idempotency_notes":"Likely not idempotent for operations like attaching sessions, injecting scripts, starting/terminating apps, but README does not document idempotency guarantees.","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Designed as a proof-of-concept; README explicitly mentions lack of proper session management and graceful error handling.","Network-exposed instrumentation endpoint may require isolated network conditions and careful client-side throttling.","iOS build details suggest non-trivial on-device dependencies; environment mismatches may cause operational issues."]}}