windows-exe-decompiler-mcp-server 1.0.0-beta.1 → 1.0.0-beta.2

package/CHANGELOG.md

@@ -7,6 +7,144 @@ Versioning where practical.
 
 ## [Unreleased]
 
+### Plugin System Deep Refactoring
+
+- **Plugin directory convention**: All plugin tool handlers migrated from flat `src/tools/` into `src/plugins/<id>/tools/` directories. Each plugin is now fully self-contained.
+- **6 new plugins**: Expanded from 9 → 15 built-in plugins:
+  - `vuln-scanner` — Vulnerability pattern scanning and summary (2 tools)
+  - `pe-analysis` — PE structure, imports, exports, fingerprint, pdata, symbol recovery (6 tools)
+  - `threat-intel` — ATT&CK mapping and IOC export (2 tools)
+  - `debug-session` — GDB/LLDB debug session management (6 tools)
+  - `memory-forensics` — Memory dump analysis, volatility integration (6 tools)
+  - `observability` — Tool call hook tracing (1 tool)
+- **Plugin SDK**: Added `ToolArgs` type to `src/plugins/sdk.ts`; unified handler signature to `(deps: PluginToolDeps)` pattern across all plugins.
+- **Tool count**: 160 MCP tools total (109 registry + 51 plugin-managed).
+- **Test coverage**: 207 test files (194 unit + 13 integration).
+
+### Web Dashboard
+
+- **Web Dashboard** (`src/api/dashboard/index.html`): Dark-themed single-page monitoring dashboard served at `http://localhost:18080/dashboard`. 6 tabs: Overview, Tools, Plugins, Samples, Config, System.
+- **Dashboard API** (`src/api/routes/dashboard-api.ts`): 7 JSON REST endpoints (`/api/v1/dashboard/*`) — overview, tools (categorized), plugins, samples (paginated), workers, config validation, system info.
+- **Real-time SSE integration**: Dashboard subscribes to `/api/v1/events` for live analysis event streaming.
+- **Auto-refresh**: Overview tab auto-polls every 15 seconds; tool search and sample pagination are fully client-side.
+- **Docker integration**: Dashboard HTML is copied to dist during build; Dockerfile includes static asset copy; `docker-compose.yml` port comment updated.
+
+### Production Hardening (P0-P3)
+
+- **CI test coverage** (P0): `.github/workflows/ci.yml` runs full test suite.
+- **TODO stub completion** (P0): Implemented `keygen-synthesizer`, `worker-pool`, `context-manager`, `decompiler-worker`, `DatabaseManager.getDb()`, `WorkerPool.registerHandler()`.
+- **Config validation** (P0): `src/config-validator.ts` with `validateConfig()` returning `ValidationReport`; `config.validate` MCP tool.
+- **Rate limiting** (P1): `src/api/rate-limiter.ts` integrated into HTTP File Server.
+- **Pagination** (P1): `src/pagination.ts` cursor-based pagination utility.
+- **Retry** (P1): `src/retry.ts` exponential backoff helper for transient failures.
+- **Plugin SDK package** (P2): `packages/plugin-sdk/` standalone npm package for third-party plugin authors.
+- **Plugin scaffolding** (P2): `scripts/create-plugin.js` interactive plugin generator.
+- **Plugin tests** (P2): `tests/unit/plugins.test.ts` — 17 tests covering lifecycle, hooks, hot-load, and dependency resolution.
+- **Plugin registry** (P2): `src/plugin-registry.ts` centralized plugin discovery and management.
+- **LLM multi-model routing** (P3): `src/llm/model-router.ts` supports routing to multiple LLM backends.
+- **Memory forensics** (P3): `src/plugins/memory-forensics.ts` plugin for memory analysis.
+- **SBOM generation** (P3): `src/tools/sbom-generate.ts` Software Bill of Materials export.
+- **Batch analysis** (P3): `src/tools/batch-analysis.ts` multi-sample batch analysis orchestration.
+- **SSE events** (P3): `src/api/sse-events.ts` Server-Sent Events infrastructure for real-time streaming.
+
+### Plugin SDK (Open Extensibility)
+
+- **Plugin SDK** (`src/plugins.ts`): Complete rewrite — enhanced `Plugin` interface with `description`, `version`, `dependencies`, `configSchema`, `hooks`, and `teardown` fields. Third-party plugin authors implement this interface for full extensibility.
+- **PluginManager**: Singleton class managing plugin lifecycle — `loadAll()`, `loadOne()`, `hotLoad()`, `unload()`, `fireHook()`, topological dependency sorting, `resolveEnabledPlugins()`.
+- **9 built-in plugins**: Expanded from 4 → 9 plugins. Added `frida` (runtime instrumentation), `ghidra` (headless analysis), `cross-module` (cross-binary comparison), `visualization` (HTML reports, timelines, data-flow maps), `kb-collaboration` (function matching, analysis templates).
+- **Prerequisite checks**: `android` checks jadx binary access, `frida` checks `frida --version`, `ghidra` checks `GHIDRA_INSTALL_DIR` env var. Plugins that fail checks are gracefully skipped.
+- **Plugin auto-discovery**: `plugins/` directory at project root is scanned for `.js`/`.mjs` files that default-export a `Plugin` object — loaded automatically alongside built-ins.
+- **Declarative config schema**: Each plugin declares `configSchema: PluginConfigField[]` (envVar, description, required, defaultValue). Surfaced via `plugin.list` tool.
+- **Dependency resolution**: Plugins declare `dependencies: string[]`. `PluginManager.topoSort()` loads them in correct order; missing deps → `skipped-deps` status.
+- **Lifecycle hooks**: `PluginHooks` interface (`onBeforeToolCall`, `onAfterToolCall`, `onToolError`). Hooks are fired by `MCPServer.callTool()` for tools belonging to hook-equipped plugins.
+- **Hot-load / unload**: `plugin.enable` hot-loads a plugin at runtime, `plugin.disable` calls `teardown()` and unregisters all plugin tools — no server restart required.
+- **Plugin introspection tools**: `plugin.list` (read-only status/config), `plugin.enable`, `plugin.disable` — LLM clients can discover and manage plugins via MCP.
+- **`MCPServer.unregisterTool()`**: New method to remove tools at runtime, enabling plugin unload.
+- **`MCPServer.setPluginManager()`**: Wires PluginManager into server for lifecycle hook dispatch.
+- **Docs**: Comprehensive `docs/PLUGINS.md` rewrite covering SDK types, hook system, auto-discovery, external plugin authoring, and troubleshooting.
+
+### Architecture & Infrastructure
+
+- **Tool Registry** (`src/tool-registry.ts`): Centralised registration of all 148 tools, 3 prompts, and 16 resources. `src/index.ts` reduced from ~1,450 lines to ~90 lines.
+- **Plugin Architecture** (`src/plugins.ts`): Four built-in plugins (android, malware, crackme, dynamic) controlled via `PLUGINS` env var. Supports prerequisite checks and custom plugin extensions. Docs: `docs/PLUGINS.md`.
+- **MCP Resources**: 16 helper scripts (8 Frida + 8 Ghidra) exposed as MCP resources discoverable via `resources/list` and readable via `resources/read`.
+- **Streaming Progress** (`src/streaming-progress.ts`): `ProgressReporter` interface for long-running tools. Emits `notifications/progress` MCP notifications when client sends `_meta.progressToken`.
+- **Architecture docs** (`docs/ARCHITECTURE.md`): Comprehensive guide covering tool registry, plugin system, resources, streaming, safe commands, process pool, structured logging, and CI/CD security.
+
+### Security Hardening
+
+- **Command injection prevention** (`src/safe-command.ts`): Whitelist regex validation (`SAFE_COMMAND_NAME_RE`), `execFileSync`/`spawnSync` with argument arrays, `safeCommandExists()`, `safeGetCommandVersion()`, `validateGraphvizFormat()`.
+- **env-validator.ts**: Replaced `execSync` shell calls with safe wrappers.
+- **cfg-visual-exports.ts**: Added `validateGraphvizFormat()` whitelist validation.
+- **CI/CD security scanning**: Added `security` job to `.github/workflows/ci.yml` — npm audit, pip-audit, CodeQL SAST.
+
+### Observability
+
+- **Structured logging**: Migrated 7 files from `console.log`/`console.error` to Pino structured JSON logging (`policy-guard.ts`, `llm-analyze.ts`, `auto-trigger.ts`, `triage.ts`, `cache-manager.ts`).
+- **Python Process Pool** (`src/python-process-pool.ts`): Queue-based concurrency limiter with `MAX_PYTHON_WORKERS` env var. Stats surfaced through `system.health` tool.
+
+### Testing
+
+- **68 new test files** generated for previously untested tools (193 total unit tests, up from 125).
+- **Integration tests**: `tests/integration/full-pipeline.test.ts` (E2E ingest→triage), `tests/integration/beta2-tools.test.ts` (beta.2 tool coverage).
+
+### Documentation
+
+- **API docs generation**: `scripts/generate-api-docs.js` + `npm run docs:api` script.
+- New: `docs/ARCHITECTURE.md`, `docs/PLUGINS.md`.
+- Updated: `README.md` (architecture section, project layout), `CONTRIBUTING.md` (tool registration guide, plugin development), `SECURITY.md` (command injection prevention, CI/CD scanning), `docs/API-REFERENCE.md` (MCP resources), `CHANGELOG.md`.
+
+## [1.0.0-beta.2] - 2026-03-30
+
+### Android / APK Analysis
+
+- Added `apk.structure.analyze` — APK manifest, permissions, and component extraction via Python worker
+- Added `apk.packer.detect` — APK packer/obfuscator detection (DexGuard, iJiami, Bangcle, etc.)
+- Added `dex.decompile` — DEX-to-Java decompilation via jadx
+- Added `dex.classes.list` — DEX class/method enumeration
+- Added `workers/apk_dex_worker.py` — Unified Python worker for APK/DEX operations
+- Docker: Added jadx v1.5.1 installation (`/opt/jadx/bin/jadx`)
+
+### Symbolic Execution & CrackMe
+
+- Added `symbolic.explore` — angr-backed symbolic execution for path exploration and constraint solving
+- Added `keygen.verify` — Keygen/license verification via Qiling or angr backends
+- Added `constraint.solve` — Z3/angr constraint solver for serial/key generation
+- Added `workers/symbolic_explorer_worker.py`, `workers/keygen_verify_worker.py`, `workers/constraint_solver_worker.py`
+
+### Dynamic Analysis
+
+- Added `dynamic.auto_hook` — Automated Frida hook generation from static analysis evidence
+- Added `dynamic.memory_dump` — Frida-based runtime memory dump with pattern scanning
+
+### Malware Analysis
+
+- Added `malware.config.extract` — Malware configuration extraction (C2, encryption keys, mutexes)
+- Added `malware.classify` — Malware family classification using YARA + capa + behavioral indicators
+- Added `c2.extract` — C2 infrastructure extraction and indicator enrichment
+- Added `workers/malware_config_worker.py`
+
+### Cross-Platform & Visualization
+
+- Added `elf.macho.parse` — ELF/Mach-O header and section parsing via Rizin
+- Added `rizin.diff` — Binary diffing via Rizin (function-level and basic-block-level)
+- Added `cfg.visualize` — Control flow graph visualization (DOT/SVG/JSON)
+- Added `timeline.correlate` — Multi-source event timeline correlation
+- Added `cross_module.xref` — Cross-module cross-reference analysis
+- Added `kb.search` — Knowledge base semantic search
+- Added `workers/elf_macho_worker.py`, `workers/rizin_diff_worker.py`
+
+### Quality & Infrastructure
+
+- **Config**: Unified Python path resolution via `config.workers.static.pythonPath` across all new tools; added `JADX_PATH` env var support
+- **PolicyGuard**: Applied to 5 high-risk dynamic/symbolic tools (`symbolic.explore`, `keygen.verify`, `patch.generate`, `dynamic.auto_hook`, `dynamic.memory_dump`)
+- **CacheManager**: Applied to 3 malware analysis tools (`malware.config.extract`, `c2.extract`, `malware.classify`)
+- **Worker validation**: Added `os.path.isfile()` input checks to 4 Python workers
+- **Workflow integration**: `workflow.triage` now routes APK/DEX samples to APK-specific analysis tools
+- **Type safety**: Replaced `any` type annotations with proper union types in malware-classify
+- **npm packaging**: Added 7 missing worker files to `package.json` `files` array
+- **Unit tests**: Added test suites for malware-config-extract, apk-structure-analyze, symbolic-explore, and patch-generate
+
 ## [1.0.0-beta.1] - 2026-03-29
 
 ### Frida Dynamic Instrumentation

package/README.md

@@ -15,6 +15,8 @@ An MCP server for Windows reverse engineering. It exposes PE triage, Ghidra-back
 - Full Linux analysis image: the Docker distribution now bundles Graphviz, Rizin, YARA-X, UPX, Wine/winedbg, Frida CLI, Qiling, angr, PANDA bindings, and RetDec in addition to the baseline Ghidra/capa/DIE/FLOSS stack.
 - **Staged nonblocking pipeline**: analysis is organized into explicit stages (`fast_profile`, `enrich_static`, `function_map`, `reconstruct`, `dynamic_plan`, `dynamic_execute`, `summarize`), with preview-first tool contracts and persisted run state for reuse.
 - **HTTP File Server**: Embedded HTTP API on port 18080 for direct sample uploads, artifact downloads, and upload session management with API key authentication.
+- **Web Dashboard**: Dark-themed real-time monitoring dashboard at `http://localhost:18080/dashboard` — shows all tools, plugins, samples, config diagnostics, system resources, and SSE event stream.
+- **Server-Sent Events (SSE)**: Real-time event streaming at `/api/v1/events` for analysis progress, sample ingestion, and server state changes.
 
 ## New in the staged analysis pipeline
 
@@ -206,6 +208,8 @@ It is designed to help MCP clients:
 - `sandbox.execute`
 - `dynamic.trace.import`
 - `dynamic.memory.import`
+- `dynamic.auto_hook` - Automated Frida hook generation from static evidence
+- `dynamic.memory_dump` - Runtime memory dump with pattern scanning
 - `attack.map`
 - `ioc.export`
 - `report.summarize`
@@ -215,6 +219,34 @@ It is designed to help MCP clients:
 - `artifacts.diff`
 - `tool.help`
 
+### Android / APK analysis
+
+- `apk.structure.analyze` - APK manifest, permissions, component extraction
+- `apk.packer.detect` - APK packer/obfuscator detection
+- `dex.decompile` - DEX-to-Java decompilation via jadx
+- `dex.classes.list` - DEX class/method enumeration
+
+### Symbolic execution & CrackMe
+
+- `symbolic.explore` - angr-backed symbolic execution
+- `keygen.verify` - Keygen/license verification (Qiling/angr)
+- `constraint.solve` - Z3/angr constraint solver
+
+### Malware analysis
+
+- `malware.config.extract` - Malware configuration extraction
+- `malware.classify` - Family classification (YARA + capa + behavioral)
+- `c2.extract` - C2 infrastructure extraction
+
+### Cross-platform & visualization
+
+- `elf.macho.parse` - ELF/Mach-O header/section parsing via Rizin
+- `rizin.diff` - Binary diffing (function/basic-block level)
+- `cfg.visualize` - Control flow graph visualization (DOT/SVG/JSON)
+- `timeline.correlate` - Multi-source event timeline correlation
+- `cross_module.xref` - Cross-module cross-reference analysis
+- `kb.search` - Knowledge base semantic search
+
 ### Semantic review and reconstruction
 
 - `code.function.rename.prepare` (deprecated, use `llm.analyze`)
@@ -437,7 +469,7 @@ See [`docs/EXAMPLES.md`](./docs/EXAMPLES.md#场景 -9-frida-运行时 instrument
 
 ## Current Development Status
 
-### Latest Release: v1.0.0-beta.1
+### Latest Release: v1.0.0-beta.2
 
 **Stable Features** (Production Ready):
 - PE triage and static analysis (`static.capability.triage`, `pe.structure.analyze`, `compiler.packer.detect`)
@@ -446,19 +478,54 @@ See [`docs/EXAMPLES.md`](./docs/EXAMPLES.md#场景 -9-frida-运行时 instrument
 - Rust and .NET recovery paths
 - Source-like reconstruction with LLM-assisted review layers
 - Runtime evidence ingestion and correlation
+- Android/APK analysis (`apk.structure.analyze`, `dex.decompile`, `dex.classes.list`, `apk.packer.detect`)
+- Symbolic execution and CrackMe tools (`symbolic.explore`, `keygen.verify`, `constraint.solve`)
+- Malware analysis (`malware.config.extract`, `malware.classify`, `c2.extract`)
+- Cross-platform binary parsing (`elf.macho.parse`, `rizin.diff`)
+- Visualization and correlation (`cfg.visualize`, `timeline.correlate`, `cross_module.xref`, `kb.search`)
+- Frida dynamic instrumentation (`frida.runtime.instrument`, `frida.script.inject`, `frida.trace.capture`)
+- HTTP File Server with REST API (port 18080) — sample upload, artifact CRUD, SSE events
+- **Web Dashboard** at `http://localhost:18080/dashboard` — real-time monitoring of tools, plugins, samples, config, system
+- **Plugin SDK** with 15 built-in plugins, hot-load/unload, third-party auto-discovery
+- **Production infrastructure**: Rate limiting, config validation, pagination, retry, batch analysis, SBOM generation
+- **SSE real-time events**: Server-Sent Events for live analysis progress streaming
+
+### Full Service Inventory (Docker)
+
+When running in Docker (`docker-compose up -d`), the container exposes:
+
+| Service | Access | Description |
+|---------|--------|-------------|
+| MCP Server | stdio (`docker exec -i`) | 160 tools, 3 prompts, 16 resources for LLM clients |
+| HTTP API | `http://localhost:18080/api/v1/*` | REST API for samples, artifacts, uploads, health, SSE |
+| Web Dashboard | `http://localhost:18080/dashboard` | Real-time monitoring SPA (6 tabs, dark theme) |
+| SSE Events | `http://localhost:18080/api/v1/events` | Real-time event stream for analysis events |
+| Dashboard API | `http://localhost:18080/api/v1/dashboard/*` | 7 JSON endpoints powering the dashboard |
+
+### Built-in Plugins (15)
+
+| Plugin | ID | Tools | Description |
+|--------|----|-------|-------------|
+| Android / APK | `android` | 4 | APK manifest, DEX decompilation, packer detection |
+| Malware Analysis | `malware` | 4 | C2 extraction, config parsing, family classification, sandbox reports |
+| CrackMe Automation | `crackme` | 4 | Validation location, symbolic execution, patching, keygen |
+| Dynamic Analysis | `dynamic` | 3 | Auto Frida hooks, trace attribution, memory dumps |
+| Frida Instrumentation | `frida` | 3 | Runtime instrumentation, script injection, trace capture |
+| Ghidra Integration | `ghidra` | 2 | Headless Ghidra analysis and health checks |
+| Cross-Module Analysis | `cross-module` | 3 | Cross-binary comparison, call graphs, DLL dependency trees |
+| Visualization | `visualization` | 3 | HTML reports, behavior timelines, data-flow maps |
+| Knowledge Base | `kb-collaboration` | 2 | Function signature matching, analysis templates |
+| PE Analysis | `pe-analysis` | 6 | PE structure, imports, exports, fingerprint, pdata, symbol recovery |
+| Vulnerability Scanner | `vuln-scanner` | 2 | Vulnerability pattern scanning and summary |
+| Threat Intelligence | `threat-intel` | 2 | ATT&CK mapping and IOC export |
+| Debug Session | `debug-session` | 6 | GDB/LLDB debug session management |
+| Memory Forensics | `memory-forensics` | 6 | Memory dump analysis, volatility integration |
+| Observability | `observability` | 1 | Tool call hook tracing and metrics |
+
+Plugins are controlled via the `PLUGINS` environment variable (`*` = all, `android,malware` = specific, `-dynamic` = exclude). See [`docs/PLUGINS.md`](./docs/PLUGINS.md).
 
 ### In Development (Post-beta roadmap)
 
-**Frida Dynamic Instrumentation** - Completed implementation, rolling into the v1 beta line:
-- `frida.runtime.instrument` - Spawn and attach mode instrumentation
-- `frida.script.inject` - Pre-built and custom script injection
-- `frida.trace.capture` - Canonical trace schema with filtering/aggregation
-- Full integration with `dynamic.trace.import`, `report.generate`, `report.summarize`
-- 101 unit tests + integration test coverage
-- Comprehensive documentation in `docs/EXAMPLES.md`
-
-**Test Coverage**: All 101 tests passing including Frida instrumentation suite.
-
 For the new static triage foundation, the most common optional requirements are:
 
 - `flare-capa`
@@ -513,20 +580,93 @@ This summary is surfaced through:
 - `report.summarize`
 - `report.generate`
 
+## Architecture
+
+The server uses a **centralised tool registry** (`src/tool-registry.ts`) that
+imports and wires 109 core MCP tools, 3 prompts, and 16 resources in one place.
+An additional 51 tools are registered by the 15 built-in plugins, bringing the
+total to 160 MCP tools.
+The entry point (`src/index.ts`) is kept under 90 lines.
+
+All 15 tool categories — from PE analysis and vulnerability scanning to Android,
+Malware, Frida, Ghidra, and debug sessions — are managed as **plugins** that
+can be toggled via the `PLUGINS` environment variable (default: all enabled).
+See [docs/PLUGINS.md](./docs/PLUGINS.md).
+
+Other infrastructure:
+
+| Component | File | Purpose |
+|-----------|------|---------|
+| Safe command execution | `src/safe-command.ts` | Whitelist-validated, array-based command invocation — prevents shell injection |
+| Python process pool | `src/python-process-pool.ts` | Concurrency-limited worker pool (`MAX_PYTHON_WORKERS` env var) |
+| Streaming progress | `src/streaming-progress.ts` | MCP `notifications/progress` for long-running tools |
+| MCP resources | `src/tool-registry.ts` | 8 Frida + 8 Ghidra scripts discoverable via `resources/list` |
+| HTTP File Server | `src/api/file-server.ts` | REST API (port 18080) for sample upload, artifact CRUD, SSE events, and dashboard |
+| Web Dashboard | `src/api/dashboard/index.html` | Dark-themed SPA at `/dashboard` — tools, plugins, samples, config, system info |
+| Dashboard API | `src/api/routes/dashboard-api.ts` | 7 JSON endpoints (`/api/v1/dashboard/*`) powering the web dashboard |
+| SSE Events | `src/api/sse-events.ts` | Server-Sent Events for real-time analysis progress and server state |
+| Rate Limiter | `src/api/rate-limiter.ts` | Request rate limiting for the HTTP API |
+| Config Validator | `src/config-validator.ts` | Validates runtime config and surfaces diagnostics via dashboard |
+| CI security scanning | `.github/workflows/ci.yml` | npm audit + pip-audit + CodeQL SAST |
+| Structured logging | `src/logger.ts` | Pino JSON logging, child loggers, audit events |
+
+Full details: [docs/ARCHITECTURE.md](./docs/ARCHITECTURE.md)
+
 ## Project layout
 
 ```text
 bin/                         npm CLI entrypoint
 dist/                        compiled TypeScript output
 ghidra_scripts/              Ghidra helper scripts used by the server
+frida_scripts/               Frida instrumentation scripts (also MCP resources)
 helpers/DotNetMetadataProbe/ .NET metadata helper project
 src/                         TypeScript MCP server source
-tests/                       unit and integration tests
-workers/                     Python worker, YARA rules, dynamic helpers
-install-to-codex.ps1         local Codex MCP install helper
-install-to-copilot.ps1       local GitHub Copilot MCP install helper
-install-to-claude.ps1        local Claude Code MCP install helper
-docs/QUALITY_EVALUATION.md   evaluation checklist for regression and release readiness
+  index.ts                   Entry point (~90 lines)
+  server.ts                  MCPServer class (tools, prompts, resources)
+  tool-registry.ts           Centralised tool/prompt/resource registration
+  plugins.ts                 Plugin framework (15 built-in + auto-discovery)
+  safe-command.ts            Command injection prevention
+  python-process-pool.ts     Concurrency-limited Python worker pool
+  streaming-progress.ts      MCP progress notification support
+  config-validator.ts        Runtime config validation with diagnostics
+  logger.ts                  Pino structured logging
+  tools/                     Individual tool definitions and handlers (~90 files)
+  plugins/
+    sdk.ts                   Plugin contract and shared types
+    android/                 Android/APK analysis plugin
+    crackme/                 CrackMe automation plugin
+    cross-module/            Cross-binary analysis plugin
+    debug-session/           GDB/LLDB debug session plugin
+    dynamic/                 Dynamic analysis plugin
+    frida/                   Frida instrumentation plugin
+    ghidra/                  Ghidra integration plugin
+    kb-collaboration/        Knowledge base plugin
+    malware/                 Malware analysis plugin
+    memory-forensics/        Memory forensics plugin
+    observability/           Tool call tracing plugin
+    pe-analysis/             PE binary analysis plugin
+    threat-intel/            Threat intelligence plugin
+    visualization/           Reporting and visualization plugin
+    vuln-scanner/            Vulnerability pattern detection plugin
+  api/
+    file-server.ts           HTTP API server (port 18080)
+    rate-limiter.ts          Request rate limiting
+    auth-middleware.ts       API key authentication
+    sse-events.ts            Server-Sent Events for real-time streaming
+    dashboard/index.html     Web dashboard SPA (dark theme, 6 tabs)
+    routes/
+      health.ts              Health check endpoint
+      dashboard-api.ts       Dashboard JSON API (7 endpoints)
+tests/                       unit and integration tests (207 test files)
+workers/                     Python workers, YARA rules, dynamic helpers
+packages/plugin-sdk/         Standalone Plugin SDK npm package
+docs/                        Documentation
+  ARCHITECTURE.md            Internal architecture guide
+  PLUGINS.md                 Plugin system guide
+  DOCKER.md                  Docker deployment guide (with service inventory)
+  API-FILE-SERVER.md         HTTP API usage guide
+  API-REFERENCE.md           Complete API reference
+  QUALITY_EVALUATION.md      Evaluation checklist for release readiness
 ```
 
 ## Prerequisites
@@ -827,6 +967,8 @@ Current non-goals:
 ## Contributing and release process
 
 - Contributor guide: [`CONTRIBUTING.md`](./CONTRIBUTING.md)
+- Architecture overview: [`docs/ARCHITECTURE.md`](./docs/ARCHITECTURE.md)
+- Plugin development: [`docs/PLUGINS.md`](./docs/PLUGINS.md)
 - Quality evaluation notes: [`docs/QUALITY_EVALUATION.md`](./docs/QUALITY_EVALUATION.md)
 - Example benchmark corpus: [`examples/benchmark-corpus.example.json`](./examples/benchmark-corpus.example.json)
 - Security policy: [`SECURITY.md`](./SECURITY.md)

package/README_zh.md

@@ -12,6 +12,11 @@
 - 运行时证据可回灌：静态证据、trace 导入、内存快照和语义 review 产物都能继续反灌到 reconstruct 和 report。
 - LLM 可深度介入：函数命名、函数解释、模块级重建 review 都已经是结构化 MCP workflow，而不是零散 prompt。
 - 适合长任务编排：长耗时 workflow 会返回 `job_id`、进度和 `polling_guidance`，方便客户端按建议 sleep/wait，而不是高频轮询浪费 token。
+- **分阶段非阻塞流水线**：分析按显式阶段组织（`fast_profile`、`enrich_static`、`function_map`、`reconstruct`、`dynamic_plan`、`dynamic_execute`、`summarize`），支持预览优先的工具合约和持久化运行状态。
+- **HTTP 文件服务**：内嵌 HTTP API（端口 18080），支持样本上传、产物下载、上传会话管理，API Key 认证。
+- **Web 实时监控面板**：`http://localhost:18080/dashboard` — 暗色主题，6 个标签页，展示工具、插件、样本、配置、系统资源和 SSE 事件流。
+- **SSE 实时事件**：`/api/v1/events` 实时推送分析进度、样本导入、服务器状态变更。
+- **插件 SDK**：15 个内置插件，热加载/卸载，第三方自动发现。
 
 ## 本轮新增的静态初筛能力
 
@@ -116,6 +121,8 @@
 - `sandbox.execute`
 - `dynamic.trace.import`
 - `dynamic.memory.import`
+- `dynamic.auto_hook` - 基于静态证据自动生成 Frida hook
+- `dynamic.memory_dump` - 运行时内存转储与模式扫描
 - `attack.map`
 - `ioc.export`
 - `report.summarize`
@@ -125,20 +132,56 @@
 - `artifacts.diff`
 - `tool.help`
 
+### Android / APK 分析
+
+- `apk.structure.analyze` - APK 清单、权限、组件提取
+- `apk.packer.detect` - APK 加壳/混淆检测
+- `dex.decompile` - DEX 转 Java 反编译（jadx）
+- `dex.classes.list` - DEX 类/方法枚举
+
+### 符号执行与 CrackMe
+
+- `symbolic.explore` - 基于 angr 的符号执行
+- `keygen.verify` - 注册机/许可证验证（Qiling/angr）
+- `constraint.solve` - Z3/angr 约束求解
+
+### 恶意软件分析
+
+- `malware.config.extract` - 恶意软件配置提取
+- `malware.classify` - 家族分类（YARA + capa + 行为）
+- `c2.extract` - C2 基础设施提取
+
+### 跨平台与可视化
+
+- `elf.macho.parse` - ELF/Mach-O 头部/段解析（Rizin）
+- `rizin.diff` - 二进制差异比较（函数/基本块级别）
+- `cfg.visualize` - 控制流图可视化（DOT/SVG/JSON）
+- `timeline.correlate` - 多源事件时间线关联
+- `cross_module.xref` - 跨模块交叉引用分析
+- `kb.search` - 知识库语义搜索
+
 ### 语义 review 与重建
 
-- `code.function.rename.prepare`
-- `code.function.rename.review`
-- `code.function.rename.apply`
-- `code.function.explain.prepare`
-- `code.function.explain.review`
-- `code.function.explain.apply`
-- `code.module.review.prepare`
-- `code.module.review`
-- `code.module.review.apply`
+- `code.function.rename.prepare`（已废弃，使用 `llm.analyze`）
+- `code.function.rename.review`（已废弃，使用 `llm.analyze`）
+- `code.function.rename.apply`（已废弃，使用 `llm.analyze`）
+- `code.function.explain.prepare`（已废弃，使用 `llm.analyze`）
+- `code.function.explain.review`（已废弃，使用 `llm.analyze`）
+- `code.function.explain.apply`（已废弃，使用 `llm.analyze`）
+- `code.module.review.prepare`（已废弃，使用 `llm.analyze`）
+- `code.module.review`（已废弃，使用 `llm.analyze`）
+- `code.module.review.apply`（已废弃，使用 `llm.analyze`）
 - `code.reconstruct.plan`
 - `code.reconstruct.export`
 
+### LLM 辅助分析
+
+- `llm.analyze` - 统一 LLM 分析接口（替代已废弃的三步骤工具）
+  - `task: 'summarize'` - 精简摘要
+  - `task: 'explain'` - 清晰解释
+  - `task: 'recommend'` - 可操作建议
+  - `task: 'review'` - 代码审查
+
 ## 高层 Workflow
 
 ### `workflow.triage`
@@ -350,7 +393,7 @@ pip install frida frida-tools
 
 ## 当前开发进度
 
-### 最新 Release: v1.0.0-beta.1
+### 最新 Release: v1.0.0-beta.2
 
 **稳定功能** (生产环境可用)：
 - PE 初筛与静态分析 (`static.capability.triage`, `pe.structure.analyze`, `compiler.packer.detect`)
@@ -359,18 +402,53 @@ pip install frida frida-tools
 - Rust 和 .NET 恢复路径
 - 源码风格重建，支持 LLM 辅助 review 层
 - 运行时证据导入与关联
-
-### 开发中 (beta 后续迭代)
-
-**Frida 动态 Instrumentation** - 实现已完成，正在并入 v1 beta 线：
-- `frida.runtime.instrument` - Spawn 和 attach 模式 instrumentation
-- `frida.script.inject` - 预构建和自定义脚本注入
-- `frida.trace.capture` - 规范化 trace schema，支持过滤/聚合
-- 与 `dynamic.trace.import`, `report.generate`, `report.summarize` 完全集成
-- 101 个单元测试 + 集成测试覆盖
-- 完整文档见 `docs/EXAMPLES.md`
-
-**测试覆盖**: 所有 101 个测试通过，包括 Frida instrumentation 套件。
+- Android/APK 分析 (`apk.structure.analyze`, `dex.decompile`, `dex.classes.list`, `apk.packer.detect`)
+- 符号执行与 CrackMe 工具 (`symbolic.explore`, `keygen.verify`, `constraint.solve`)
+- 恶意软件分析 (`malware.config.extract`, `malware.classify`, `c2.extract`)
+- 跨平台二进制解析 (`elf.macho.parse`, `rizin.diff`)
+- 可视化与关联 (`cfg.visualize`, `timeline.correlate`, `cross_module.xref`, `kb.search`)
+- Frida 动态 Instrumentation (`frida.runtime.instrument`, `frida.script.inject`, `frida.trace.capture`)
+- HTTP 文件服务 REST API（端口 18080）— 样本上传、产物 CRUD、SSE 事件
+- **Web 监控面板** (`http://localhost:18080/dashboard`) — 工具、插件、样本、配置、系统实时监控
+- **插件 SDK**：15 个内置插件，热加载/卸载，第三方自动发现
+- **生产基础设施**：限流、配置校验、分页、重试、批量分析、SBOM 生成
+- **SSE 实时事件**：Server-Sent Events 实时推送分析进度
+
+### 服务全景（Docker）
+
+Docker 部署时（`docker-compose up -d`），容器暴露：
+
+| 服务 | 访问方式 | 说明 |
+|------|----------|------|
+| MCP Server | stdio (`docker exec -i`) | 160 个工具、3 个 prompt、16 个 resource |
+| HTTP API | `http://localhost:18080/api/v1/*` | 样本/产物/上传/健康检查 REST API |
+| Web 面板 | `http://localhost:18080/dashboard` | 实时监控 SPA（6 标签页，暗色主题） |
+| SSE 事件 | `http://localhost:18080/api/v1/events` | 分析事件实时推送 |
+| 面板 API | `http://localhost:18080/api/v1/dashboard/*` | 7 个 JSON 端点 |
+
+### 内置插件（15 个）
+
+| 插件 | ID | 工具数 | 说明 |
+|------|----|--------|------|
+| Android / APK | `android` | 4 | APK 清单、DEX 反编译、加壳检测 |
+| 恶意软件分析 | `malware` | 4 | C2 提取、配置解析、家族分类、沙箱报告 |
+| CrackMe 自动化 | `crackme` | 4 | 验证定位、符号执行、补丁、注册机 |
+| 动态分析 | `dynamic` | 3 | 自动 Frida hook、trace 归因、内存转储 |
+| Frida Instrumentation | `frida` | 3 | 运行时 instrumentation、脚本注入、trace 采集 |
+| Ghidra 集成 | `ghidra` | 2 | 无头 Ghidra 分析与健康检查 |
+| 跨模块分析 | `cross-module` | 3 | 跨二进制比较、调用图、DLL 依赖树 |
+| 可视化 | `visualization` | 3 | HTML 报告、行为时间线、数据流图 |
+| 知识库 | `kb-collaboration` | 2 | 函数签名匹配、分析模板 |
+| PE 分析 | `pe-analysis` | 6 | PE 结构、导入、导出、指纹、pdata、符号恢复 |
+| 漏洞扫描 | `vuln-scanner` | 2 | 漏洞模式扫描与摘要 |
+| 威胁情报 | `threat-intel` | 2 | ATT&CK 映射与 IOC 导出 |
+| 调试会话 | `debug-session` | 6 | GDB/LLDB 调试会话管理 |
+| 内存取证 | `memory-forensics` | 6 | 内存转储分析、volatility 集成 |
+| 可观测性 | `observability` | 1 | 工具调用 hook 追踪与指标 |
+
+插件通过 `PLUGINS` 环境变量控制（`*` = 全部, `android,malware` = 指定, `-dynamic` = 排除）。详见 [`docs/PLUGINS.md`](./docs/PLUGINS.md)。
+
+### 开发中（beta 后续迭代）
 
 对于新的静态初筛能力，最常见的可选依赖是：
 
@@ -401,14 +479,31 @@ pip install frida frida-tools
 bin/                         npm CLI 入口
 dist/                        编译后的 TypeScript 输出
 ghidra_scripts/              Ghidra 辅助脚本
+frida_scripts/               Frida instrumentation 脚本（同时作为 MCP resource）
 helpers/DotNetMetadataProbe/ .NET 元数据辅助项目
 src/                         MCP Server 源码
-tests/                       单元与集成测试
+  index.ts                   入口（~90 行）
+  server.ts                  MCPServer 类
+  tool-registry.ts           集中式工具/prompt/resource 注册
+  plugins.ts                 插件框架（15 个内置 + 自动发现）
+  safe-command.ts            命令注入防护
+  python-process-pool.ts     Python worker 并发池
+  streaming-progress.ts      MCP 进度通知
+  config-validator.ts        运行时配置校验
+  logger.ts                  Pino 结构化日志
+  tools/                     工具定义与处理器（~90 个文件）
+  plugins/                   插件目录（15 个内置插件）
+  api/
+    file-server.ts           HTTP API（端口 18080）
+    rate-limiter.ts          请求限流
+    sse-events.ts            Server-Sent Events
+    dashboard/index.html     Web 监控面板
+    routes/
+      dashboard-api.ts       面板 JSON API（7 个端点）
+tests/                       单元与集成测试（207 个测试文件）
 workers/                     Python worker、YARA 规则、动态分析辅助
-install-to-codex.ps1         Codex 本地安装脚本
-install-to-copilot.ps1       GitHub Copilot 本地安装脚本
-install-to-claude.ps1        Claude Code 本地安装脚本
-docs/QUALITY_EVALUATION.md   回归与发版质量检查说明
+packages/plugin-sdk/         独立 Plugin SDK npm 包
+docs/                        文档
 ```
 
 ## 环境要求

package/dist/api/file-server.d.ts

@@ -23,11 +23,13 @@ export declare class FileServer {
     private server;
     private effectivePort;
     private readonly authMiddleware;
+    private readonly rateLimiter;
     constructor(config: FileServerConfig, dependencies: FileServerDependencies);
     start(): Promise<void>;
     stop(): Promise<void>;
     getPort(): number;
     private handleRequest;
+    private serveDashboardHtml;
     private requireApiKey;
     private sendJson;
     private sendBuffer;