x64dbgMCP
An MCP server that connects LLMs with the x64dbg debugger, enabling natural language control over debugging functions.
- 40+ x64dbg SDK Tools - Provides access to almost every single debugging feature given by the SDK for smart debugging.
- Cross-Architecture Support - Works with both x64dbg and x32dbg.
- API Compatibility - Provides API access to Claude from CMD for even faster debugging and longer consecutive tool chain calls.
- Runable from cmd using the args given in the python file. (API Key, max tool calls, Claude is limited to 25 but the api has a much higher limit.)
- IF you have issues connecting to the x64dbg session from the python file, open the logs tab in x64dbg to view what port the plugin is running on and add that as the argument to your python script.
Quick Setup
-
Download Plugin
- Grab .dp64 or .dp32 from this repo's build/release directory
- Copy to your local: [x64dbg_dir]/release/x64/plugins/
-
Configure Claude Desktop
- Copy x64dbgmcp.py from this repos src directory
- Update local claude_desktop_config.json with path to x64dbgmcp.py
{
"mcpServers": {
"x64dbg": {
"command": "Path\\To\\Python",
"args": [
"Path\\to\\x64dbg.py"
]
}
}
}
- Start Debugging
- Launch x64dbg
- Start Claude Desktop
- Check plugin loaded successfully (ALT+L in x64dbg for logs)
Build from Source
- git clone [repository-url]
- cd x64dbgmcp
- cmake -S . -B build
- cmake --build build --target all_plugins --config Release
🟨**---TIPS---**🟨
- Use the --target all_plugins argument to specify both x32 and x64, otherwise use -A flag to distinguish between either x64 or Win32 build. For example 32 bit build would be:
- cmake -S . -B build32 -A Win32 -DBUILD_BOTH_ARCHES=OFF
- cmake --build build32 --config Release
- If you do not provide the model you are working with with context of where your exe is, it wont have the capabiltiy to restart the binary if it crashes or hangs. So, provide it with the full path of the binary so it can call the CMDEXEC function like "init C:\Absolute\Path\to\EXE"
This will allow for even more automated analysis.
Usage Examples
Set a breakpoint and analyze:
"Set a breakpoint at the main function and step through the first few instructions"
Memory analysis:
"Read 100 bytes from address 0x401000 and show me what's there"
Register inspection:
"What's the current value of RAX and RIP registers?"
Pattern searching:
"Find the pattern '48 8B 05' in the current module"
Demo
Related Servers
Remote MCP Server Chatbot
A demonstration of deploying a remote MCP server on Cloudflare Workers without authentication.
NHL MCP Server
An MCP server for the NHL API, providing access to all documented endpoints.
MCP Manager
A full-stack application for managing Model Context Protocol (MCP) servers for Claude Desktop with a modern web interface.
ContextKeeper
Provides perfect memory for AI-assisted development by capturing project context snapshots, enabling natural language search, evolution tracking, and code intelligence.
Imagen3-MCP
Generate images using Google's Imagen 3.0 model via the Gemini API.
Authless MCP Server
A template for creating a remote, authentication-free MCP server deployable on Cloudflare Workers.
GraphQL Schema
Exposes GraphQL schema information to LLMs, allowing them to explore and understand the schema using specialized tools.
Modes MCP Server
An MCP server for programmatically managing Roo's custom operational modes.
MCP Game Development Server
Automate game creation using React Three Fiber and manage projects with Linear integration.
SeedDream 3.0 FAL
Generate images using Bytedance's SeedDream 3.0 model via the FAL AI platform. Requires a FAL AI API key.