npm - windows-exe-decompiler-mcp-server - Versions diffs - 0.1.0 - Mend

windows-exe-decompiler-mcp-server 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (190) hide show

package/CODEX_INSTALLATION.md +69 -0
package/COPILOT_INSTALLATION.md +77 -0
package/LICENSE +21 -0
package/README.md +314 -0
package/bin/windows-exe-decompiler-mcp-server.js +3 -0
package/dist/analysis-provenance.d.ts +184 -0
package/dist/analysis-provenance.js +74 -0
package/dist/analysis-task-runner.d.ts +31 -0
package/dist/analysis-task-runner.js +160 -0
package/dist/artifact-inventory.d.ts +23 -0
package/dist/artifact-inventory.js +175 -0
package/dist/cache-manager.d.ts +128 -0
package/dist/cache-manager.js +454 -0
package/dist/confidence-semantics.d.ts +66 -0
package/dist/confidence-semantics.js +122 -0
package/dist/config.d.ts +335 -0
package/dist/config.js +193 -0
package/dist/database.d.ts +227 -0
package/dist/database.js +601 -0
package/dist/decompiler-worker.d.ts +441 -0
package/dist/decompiler-worker.js +1962 -0
package/dist/dynamic-trace.d.ts +95 -0
package/dist/dynamic-trace.js +629 -0
package/dist/env-validator.d.ts +15 -0
package/dist/env-validator.js +249 -0
package/dist/error-handler.d.ts +28 -0
package/dist/error-handler.example.d.ts +22 -0
package/dist/error-handler.example.js +141 -0
package/dist/error-handler.js +139 -0
package/dist/ghidra-analysis-status.d.ts +49 -0
package/dist/ghidra-analysis-status.js +178 -0
package/dist/ghidra-config.d.ts +134 -0
package/dist/ghidra-config.js +464 -0
package/dist/index.d.ts +9 -0
package/dist/index.js +200 -0
package/dist/job-queue.d.ts +169 -0
package/dist/job-queue.js +407 -0
package/dist/logger.d.ts +106 -0
package/dist/logger.js +176 -0
package/dist/policy-guard.d.ts +115 -0
package/dist/policy-guard.js +243 -0
package/dist/process-output.d.ts +15 -0
package/dist/process-output.js +90 -0
package/dist/prompts/function-explanation-review.d.ts +5 -0
package/dist/prompts/function-explanation-review.js +64 -0
package/dist/prompts/semantic-name-review.d.ts +5 -0
package/dist/prompts/semantic-name-review.js +63 -0
package/dist/runtime-correlation.d.ts +34 -0
package/dist/runtime-correlation.js +279 -0
package/dist/runtime-paths.d.ts +3 -0
package/dist/runtime-paths.js +11 -0
package/dist/selection-diff.d.ts +667 -0
package/dist/selection-diff.js +53 -0
package/dist/semantic-name-suggestion-artifacts.d.ts +116 -0
package/dist/semantic-name-suggestion-artifacts.js +314 -0
package/dist/server.d.ts +129 -0
package/dist/server.js +578 -0
package/dist/tools/artifact-read.d.ts +235 -0
package/dist/tools/artifact-read.js +317 -0
package/dist/tools/artifacts-diff.d.ts +728 -0
package/dist/tools/artifacts-diff.js +304 -0
package/dist/tools/artifacts-list.d.ts +515 -0
package/dist/tools/artifacts-list.js +389 -0
package/dist/tools/attack-map.d.ts +290 -0
package/dist/tools/attack-map.js +519 -0
package/dist/tools/cache-observability.d.ts +4 -0
package/dist/tools/cache-observability.js +36 -0
package/dist/tools/code-function-cfg.d.ts +50 -0
package/dist/tools/code-function-cfg.js +102 -0
package/dist/tools/code-function-decompile.d.ts +55 -0
package/dist/tools/code-function-decompile.js +103 -0
package/dist/tools/code-function-disassemble.d.ts +43 -0
package/dist/tools/code-function-disassemble.js +185 -0
package/dist/tools/code-function-explain-apply.d.ts +255 -0
package/dist/tools/code-function-explain-apply.js +225 -0
package/dist/tools/code-function-explain-prepare.d.ts +535 -0
package/dist/tools/code-function-explain-prepare.js +276 -0
package/dist/tools/code-function-explain-review.d.ts +397 -0
package/dist/tools/code-function-explain-review.js +589 -0
package/dist/tools/code-function-rename-apply.d.ts +248 -0
package/dist/tools/code-function-rename-apply.js +220 -0
package/dist/tools/code-function-rename-prepare.d.ts +506 -0
package/dist/tools/code-function-rename-prepare.js +279 -0
package/dist/tools/code-function-rename-review.d.ts +574 -0
package/dist/tools/code-function-rename-review.js +761 -0
package/dist/tools/code-functions-list.d.ts +37 -0
package/dist/tools/code-functions-list.js +91 -0
package/dist/tools/code-functions-rank.d.ts +34 -0
package/dist/tools/code-functions-rank.js +90 -0
package/dist/tools/code-functions-reconstruct.d.ts +2725 -0
package/dist/tools/code-functions-reconstruct.js +2807 -0
package/dist/tools/code-functions-search.d.ts +39 -0
package/dist/tools/code-functions-search.js +90 -0
package/dist/tools/code-reconstruct-export.d.ts +1212 -0
package/dist/tools/code-reconstruct-export.js +4002 -0
package/dist/tools/code-reconstruct-plan.d.ts +274 -0
package/dist/tools/code-reconstruct-plan.js +342 -0
package/dist/tools/dotnet-metadata-extract.d.ts +541 -0
package/dist/tools/dotnet-metadata-extract.js +355 -0
package/dist/tools/dotnet-reconstruct-export.d.ts +567 -0
package/dist/tools/dotnet-reconstruct-export.js +1151 -0
package/dist/tools/dotnet-types-list.d.ts +325 -0
package/dist/tools/dotnet-types-list.js +201 -0
package/dist/tools/dynamic-dependencies.d.ts +115 -0
package/dist/tools/dynamic-dependencies.js +213 -0
package/dist/tools/dynamic-memory-import.d.ts +10 -0
package/dist/tools/dynamic-memory-import.js +567 -0
package/dist/tools/dynamic-trace-import.d.ts +10 -0
package/dist/tools/dynamic-trace-import.js +235 -0
package/dist/tools/entrypoint-fallback-disasm.d.ts +30 -0
package/dist/tools/entrypoint-fallback-disasm.js +89 -0
package/dist/tools/ghidra-analyze.d.ts +88 -0
package/dist/tools/ghidra-analyze.js +208 -0
package/dist/tools/ghidra-health.d.ts +37 -0
package/dist/tools/ghidra-health.js +212 -0
package/dist/tools/ioc-export.d.ts +209 -0
package/dist/tools/ioc-export.js +542 -0
package/dist/tools/packer-detect.d.ts +165 -0
package/dist/tools/packer-detect.js +284 -0
package/dist/tools/pe-exports-extract.d.ts +175 -0
package/dist/tools/pe-exports-extract.js +253 -0
package/dist/tools/pe-fingerprint.d.ts +234 -0
package/dist/tools/pe-fingerprint.js +269 -0
package/dist/tools/pe-imports-extract.d.ts +105 -0
package/dist/tools/pe-imports-extract.js +245 -0
package/dist/tools/report-generate.d.ts +157 -0
package/dist/tools/report-generate.js +457 -0
package/dist/tools/report-summarize.d.ts +2131 -0
package/dist/tools/report-summarize.js +596 -0
package/dist/tools/runtime-detect.d.ts +135 -0
package/dist/tools/runtime-detect.js +247 -0
package/dist/tools/sample-ingest.d.ts +94 -0
package/dist/tools/sample-ingest.js +327 -0
package/dist/tools/sample-profile-get.d.ts +183 -0
package/dist/tools/sample-profile-get.js +121 -0
package/dist/tools/sandbox-execute.d.ts +441 -0
package/dist/tools/sandbox-execute.js +392 -0
package/dist/tools/strings-extract.d.ts +375 -0
package/dist/tools/strings-extract.js +314 -0
package/dist/tools/strings-floss-decode.d.ts +143 -0
package/dist/tools/strings-floss-decode.js +259 -0
package/dist/tools/system-health.d.ts +434 -0
package/dist/tools/system-health.js +446 -0
package/dist/tools/task-cancel.d.ts +21 -0
package/dist/tools/task-cancel.js +70 -0
package/dist/tools/task-status.d.ts +27 -0
package/dist/tools/task-status.js +106 -0
package/dist/tools/task-sweep.d.ts +22 -0
package/dist/tools/task-sweep.js +77 -0
package/dist/tools/tool-help.d.ts +340 -0
package/dist/tools/tool-help.js +261 -0
package/dist/tools/yara-scan.d.ts +554 -0
package/dist/tools/yara-scan.js +313 -0
package/dist/types.d.ts +266 -0
package/dist/types.js +41 -0
package/dist/worker-pool.d.ts +204 -0
package/dist/worker-pool.js +650 -0
package/dist/workflows/deep-static.d.ts +104 -0
package/dist/workflows/deep-static.js +276 -0
package/dist/workflows/function-explanation-review.d.ts +655 -0
package/dist/workflows/function-explanation-review.js +440 -0
package/dist/workflows/reconstruct.d.ts +2053 -0
package/dist/workflows/reconstruct.js +666 -0
package/dist/workflows/semantic-name-review.d.ts +2418 -0
package/dist/workflows/semantic-name-review.js +521 -0
package/dist/workflows/triage.d.ts +659 -0
package/dist/workflows/triage.js +1374 -0
package/dist/workspace-manager.d.ts +150 -0
package/dist/workspace-manager.js +411 -0
package/ghidra_scripts/DecompileFunction.java +487 -0
package/ghidra_scripts/DecompileFunction.py +150 -0
package/ghidra_scripts/ExtractCFG.java +256 -0
package/ghidra_scripts/ExtractCFG.py +233 -0
package/ghidra_scripts/ExtractFunctions.java +442 -0
package/ghidra_scripts/ExtractFunctions.py +101 -0
package/ghidra_scripts/README.md +125 -0
package/ghidra_scripts/SearchFunctionReferences.java +380 -0
package/helpers/DotNetMetadataProbe/DotNetMetadataProbe.csproj +9 -0
package/helpers/DotNetMetadataProbe/Program.cs +566 -0
package/install-to-codex.ps1 +178 -0
package/install-to-copilot.ps1 +303 -0
package/package.json +101 -0
package/requirements.txt +9 -0
package/workers/requirements-dynamic.txt +11 -0
package/workers/requirements.txt +8 -0
package/workers/speakeasy_compat.py +175 -0
package/workers/static_worker.py +5183 -0
package/workers/yara_rules/default.yar +33 -0
package/workers/yara_rules/malware_families.yar +93 -0
package/workers/yara_rules/packers.yar +80 -0

package/ghidra_scripts/ExtractCFG.java ADDED Viewed

@@ -0,0 +1,256 @@
+// ExtractCFG.java - Java fallback for CFG extraction
+// @category Analysis
+// @description Extracts a control-flow graph for a function and returns JSON
+import ghidra.app.script.GhidraScript;
+import ghidra.program.model.address.Address;
+import ghidra.program.model.block.BasicBlockModel;
+import ghidra.program.model.block.CodeBlock;
+import ghidra.program.model.block.CodeBlockIterator;
+import ghidra.program.model.block.CodeBlockReference;
+import ghidra.program.model.block.CodeBlockReferenceIterator;
+import ghidra.program.model.listing.Function;
+import ghidra.program.model.listing.FunctionIterator;
+import ghidra.program.model.listing.FunctionManager;
+import ghidra.program.model.listing.Instruction;
+import ghidra.program.model.symbol.Symbol;
+import ghidra.program.model.symbol.SymbolIterator;
+import ghidra.program.model.symbol.SymbolType;
+import java.util.LinkedHashMap;
+import java.util.Map;
+public class ExtractCFG extends GhidraScript {
+    private String escapeJson(String value) {
+        if (value == null) {
+            return "";
+        }
+        StringBuilder out = new StringBuilder(value.length() + 16);
+        for (int i = 0; i < value.length(); i++) {
+            char c = value.charAt(i);
+            switch (c) {
+                case '"':
+                    out.append("\\\"");
+                    break;
+                case '\\':
+                    out.append("\\\\");
+                    break;
+                case '\b':
+                    out.append("\\b");
+                    break;
+                case '\f':
+                    out.append("\\f");
+                    break;
+                case '\n':
+                    out.append("\\n");
+                    break;
+                case '\r':
+                    out.append("\\r");
+                    break;
+                case '\t':
+                    out.append("\\t");
+                    break;
+                default:
+                    if (c < 0x20) {
+                        out.append(String.format("\\u%04x", (int) c));
+                    } else {
+                        out.append(c);
+                    }
+            }
+        }
+        return out.toString();
+    }
+    private Function resolveFunction(String addressOrSymbol) {
+        FunctionManager manager = currentProgram.getFunctionManager();
+        try {
+            Address address = currentProgram.getAddressFactory().getAddress(addressOrSymbol);
+            Function byAddress = manager.getFunctionAt(address);
+            if (byAddress != null) {
+                return byAddress;
+            }
+        } catch (Exception ignored) {
+        }
+        SymbolIterator iterator = currentProgram.getSymbolTable().getSymbols(addressOrSymbol);
+        while (iterator.hasNext()) {
+            Symbol symbol = iterator.next();
+            if (symbol.getSymbolType() != SymbolType.FUNCTION) {
+                continue;
+            }
+            Function bySymbol = manager.getFunctionAt(symbol.getAddress());
+            if (bySymbol != null) {
+                return bySymbol;
+            }
+        }
+        FunctionIterator functions = manager.getFunctions(true);
+        while (functions.hasNext()) {
+            Function function = functions.next();
+            if (addressOrSymbol.equals(function.getName())) {
+                return function;
+            }
+        }
+        return null;
+    }
+    private String getBlockType(CodeBlock block, Function function) throws Exception {
+        if (block.getFirstStartAddress().equals(function.getEntryPoint())) {
+            return "entry";
+        }
+        CodeBlockReferenceIterator destinations = block.getDestinations(monitor);
+        if (!destinations.hasNext()) {
+            return "exit";
+        }
+        Instruction instruction = currentProgram.getListing().getInstructionAt(block.getFirstStartAddress());
+        while (instruction != null && block.contains(instruction.getAddress())) {
+            if (instruction.getFlowType().isCall()) {
+                return "call";
+            }
+            if (instruction.getFlowType().isTerminal()) {
+                return "return";
+            }
+            instruction = instruction.getNext();
+        }
+        return "basic";
+    }
+    private String getEdgeType(CodeBlock sourceBlock) {
+        Instruction instruction = currentProgram.getListing().getInstructionAt(sourceBlock.getMaxAddress());
+        if (instruction == null) {
+            return "fallthrough";
+        }
+        if (instruction.getFlowType().isCall()) {
+            return "call";
+        }
+        if (instruction.getFlowType().isJump()) {
+            return "jump";
+        }
+        if (instruction.getFlowType().isTerminal()) {
+            return "return";
+        }
+        return "fallthrough";
+    }
+    @Override
+    protected void run() throws Exception {
+        if (currentProgram == null) {
+            println("{\"error\":\"No program loaded\"}");
+            return;
+        }
+        String[] args = getScriptArgs();
+        if (args.length < 1) {
+            println("{\"error\":\"Usage: ExtractCFG.java <address|symbol>\"}");
+            return;
+        }
+        Function function = resolveFunction(args[0]);
+        if (function == null) {
+            println("{\"error\":\"Function not found: " + escapeJson(args[0]) + "\"}");
+            return;
+        }
+        BasicBlockModel blockModel = new BasicBlockModel(currentProgram);
+        Map<String, String> blockIds = new LinkedHashMap<>();
+        StringBuilder nodes = new StringBuilder(16384);
+        StringBuilder edges = new StringBuilder(16384);
+        boolean firstNode = true;
+        int blockIndex = 0;
+        CodeBlockIterator blocks = blockModel.getCodeBlocksContaining(function.getBody(), monitor);
+        while (blocks.hasNext()) {
+            CodeBlock block = blocks.next();
+            String blockAddress = block.getFirstStartAddress().toString();
+            String blockId = "block_" + blockIndex++;
+            blockIds.put(blockAddress, blockId);
+            if (!firstNode) {
+                nodes.append(',');
+            }
+            firstNode = false;
+            nodes.append('{');
+            nodes.append("\"id\":\"").append(escapeJson(blockId)).append("\",");
+            nodes.append("\"address\":\"").append(escapeJson(blockAddress)).append("\",");
+            nodes.append("\"instructions\":[");
+            boolean firstInstruction = true;
+            Instruction instruction = currentProgram.getListing().getInstructionAt(block.getFirstStartAddress());
+            while (instruction != null && block.contains(instruction.getAddress())) {
+                if (!firstInstruction) {
+                    nodes.append(',');
+                }
+                firstInstruction = false;
+                String operand =
+                    instruction.getNumOperands() > 0
+                        ? instruction.getDefaultOperandRepresentation(0)
+                        : "";
+                nodes.append("\"")
+                    .append(escapeJson(
+                        instruction.getAddress().toString()
+                            + ": "
+                            + instruction.getMnemonicString()
+                            + (operand.length() > 0 ? " " + operand : "")
+                    ))
+                    .append("\"");
+                instruction = instruction.getNext();
+            }
+            nodes.append("],\"type\":\"")
+                .append(escapeJson(getBlockType(block, function)))
+                .append("\"}");
+        }
+        boolean firstEdge = true;
+        blocks = blockModel.getCodeBlocksContaining(function.getBody(), monitor);
+        while (blocks.hasNext()) {
+            CodeBlock block = blocks.next();
+            String fromId = blockIds.get(block.getFirstStartAddress().toString());
+            if (fromId == null) {
+                continue;
+            }
+            CodeBlockReferenceIterator destinations = block.getDestinations(monitor);
+            while (destinations.hasNext()) {
+                CodeBlockReference destination = destinations.next();
+                if (!function.getBody().contains(destination.getDestinationAddress())) {
+                    continue;
+                }
+                String toId = blockIds.get(destination.getDestinationAddress().toString());
+                if (toId == null) {
+                    continue;
+                }
+                if (!firstEdge) {
+                    edges.append(',');
+                }
+                firstEdge = false;
+                edges.append("{\"from\":\"")
+                    .append(escapeJson(fromId))
+                    .append("\",\"to\":\"")
+                    .append(escapeJson(toId))
+                    .append("\",\"type\":\"")
+                    .append(escapeJson(getEdgeType(block)))
+                    .append("\"}");
+            }
+        }
+        StringBuilder output = new StringBuilder(32768);
+        output.append('{');
+        output.append("\"function\":\"").append(escapeJson(function.getName())).append("\",");
+        output.append("\"address\":\"").append(escapeJson(function.getEntryPoint().toString())).append("\",");
+        output.append("\"nodes\":[").append(nodes).append("],");
+        output.append("\"edges\":[").append(edges).append("]");
+        output.append('}');
+        println(output.toString());
+    }
+}

package/ghidra_scripts/ExtractCFG.py ADDED Viewed

@@ -0,0 +1,233 @@
+# ExtractCFG.py - Extract Control Flow Graph for a function
+# Requirements: 11.1, 11.2, 11.3, 11.4, 11.5
+#
+# Usage: analyzeHeadless <project_path> <project_name> -process <binary> \
+#        -postScript ExtractCFG.py <address_or_symbol> -noanalysis
+#
+# Output: JSON with CFG nodes and edges
+from ghidra.program.model.block import BasicBlockModel
+from ghidra.program.model.symbol import SymbolType
+from ghidra.program.model.address import AddressSet
+import json
+import sys
+def get_function_by_address_or_symbol(program, address_or_symbol):
+    """
+    Find function by address (hex string) or symbol name
+    """
+    function_manager = program.getFunctionManager()
+    # Try as address first
+    try:
+        addr = program.getAddressFactory().getAddress(address_or_symbol)
+        func = function_manager.getFunctionAt(addr)
+        if func:
+            return func
+    except:
+        pass
+    # Try as symbol name
+    symbol_table = program.getSymbolTable()
+    symbols = symbol_table.getSymbols(address_or_symbol)
+    for symbol in symbols:
+        if symbol.getSymbolType() == SymbolType.FUNCTION:
+            func = function_manager.getFunctionAt(symbol.getAddress())
+            if func:
+                return func
+    return None
+def get_block_type(block, function):
+    """
+    Determine the type of a basic block
+    Requirements: 11.3
+    """
+    entry_point = function.getEntryPoint()
+    # Check if this is the entry block
+    if block.getFirstStartAddress().equals(entry_point):
+        return "entry"
+    # Check if this is an exit block (has no outgoing edges or returns)
+    destinations = block.getDestinations(monitor)
+    if not destinations.hasNext():
+        return "exit"
+    # Check if block contains a call instruction
+    listing = currentProgram.getListing()
+    instruction = listing.getInstructionAt(block.getFirstStartAddress())
+    while instruction and block.contains(instruction.getAddress()):
+        flow_type = instruction.getFlowType()
+        if flow_type.isCall():
+            return "call"
+        if flow_type.isTerminal():
+            return "return"
+        instruction = instruction.getNext()
+    return "basic"
+def get_edge_type(source_block, dest_block):
+    """
+    Determine the type of a control flow edge
+    Requirements: 11.4
+    """
+    listing = currentProgram.getListing()
+    # Get the last instruction in the source block
+    last_addr = source_block.getMaxAddress()
+    instruction = listing.getInstructionBefore(last_addr.add(1))
+    if not instruction:
+        return "fallthrough"
+    flow_type = instruction.getFlowType()
+    if flow_type.isCall():
+        return "call"
+    elif flow_type.isJump():
+        return "jump"
+    elif flow_type.isTerminal():
+        return "return"
+    elif flow_type.isFallthrough():
+        return "fallthrough"
+    else:
+        return "fallthrough"
+def extract_cfg(function):
+    """
+    Extract control flow graph for a function
+    Requirements: 11.1, 11.2, 11.3, 11.4, 11.5
+    """
+    # Create basic block model
+    block_model = BasicBlockModel(currentProgram)
+    listing = currentProgram.getListing()
+    # Get all basic blocks in the function
+    function_body = function.getBody()
+    code_blocks = block_model.getCodeBlocksContaining(function_body, monitor)
+    nodes = []
+    edges = []
+    block_id_map = {}
+    # First pass: create nodes
+    block_index = 0
+    while code_blocks.hasNext():
+        block = code_blocks.next()
+        # Generate unique block ID
+        block_id = "block_{}".format(block_index)
+        block_id_map[block.getFirstStartAddress().toString()] = block_id
+        # Extract instructions in this block
+        instructions = []
+        instruction = listing.getInstructionAt(block.getFirstStartAddress())
+        while instruction and block.contains(instruction.getAddress()):
+            # Format: address: mnemonic operands
+            instr_str = "{}: {} {}".format(
+                instruction.getAddress().toString(),
+                instruction.getMnemonicString(),
+                instruction.getDefaultOperandRepresentation(0) if instruction.getNumOperands() > 0 else ""
+            )
+            instructions.append(instr_str.strip())
+            instruction = instruction.getNext()
+        # Determine block type
+        block_type = get_block_type(block, function)
+        # Create node
+        node = {
+            "id": block_id,
+            "address": block.getFirstStartAddress().toString(),
+            "instructions": instructions,
+            "type": block_type
+        }
+        nodes.append(node)
+        block_index += 1
+    # Second pass: create edges
+    code_blocks = block_model.getCodeBlocksContaining(function_body, monitor)
+    while code_blocks.hasNext():
+        block = code_blocks.next()
+        source_id = block_id_map.get(block.getFirstStartAddress().toString())
+        if not source_id:
+            continue
+        # Get all destination blocks
+        destinations = block.getDestinations(monitor)
+        while destinations.hasNext():
+            dest_ref = destinations.next()
+            dest_addr = dest_ref.getDestinationAddress()
+            # Check if destination is within the function
+            if function_body.contains(dest_addr):
+                dest_id = block_id_map.get(dest_addr.toString())
+                if dest_id:
+                    # Determine edge type
+                    edge_type = get_edge_type(block, None)
+                    edge = {
+                        "from": source_id,
+                        "to": dest_id,
+                        "type": edge_type
+                    }
+                    edges.append(edge)
+    return {
+        "nodes": nodes,
+        "edges": edges
+    }
+def main():
+    """
+    Main entry point
+    """
+    if len(sys.argv) < 2:
+        result = {
+            "error": "Usage: ExtractCFG.py <address_or_symbol>"
+        }
+        print(json.dumps(result))
+        return
+    address_or_symbol = sys.argv[1]
+    # Find the function
+    function = get_function_by_address_or_symbol(currentProgram, address_or_symbol)
+    if not function:
+        result = {
+            "error": "Function not found: {}".format(address_or_symbol)
+        }
+        print(json.dumps(result))
+        return
+    # Extract CFG
+    try:
+        cfg = extract_cfg(function)
+        result = {
+            "function": function.getName(),
+            "address": function.getEntryPoint().toString(),
+            "nodes": cfg["nodes"],
+            "edges": cfg["edges"]
+        }
+        print(json.dumps(result, indent=2))
+    except Exception as e:
+        result = {
+            "error": "Failed to extract CFG: {}".format(str(e))
+        }
+        print(json.dumps(result))
+if __name__ == "__main__":
+    main()