x64dbgMCP

An MCP server that connects LLMs with the x64dbg debugger, enabling natural language control over debugging functions.

40+ x64dbg SDK Tools - Provides access to almost every single debugging feature given by the SDK for smart debugging.
Cross-Architecture Support - Works with both x64dbg and x32dbg.
API Compatibility - Provides API access to Claude from CMD for even faster debugging and longer consecutive tool chain calls.
- Runable from cmd using the args given in the python file. (API Key, max tool calls, Claude is limited to 25 but the api has a much higher limit.)
- IF you have issues connecting to the x64dbg session from the python file, open the logs tab in x64dbg to view what port the plugin is running on and add that as the argument to your python script.

Quick Setup

Download Plugin
- Grab .dp64 or .dp32 from this repo's build/release directory
- Copy to your local: [x64dbg_dir]/release/x64/plugins/
Configure Claude Desktop
- Copy x64dbgmcp.py from this repos src directory
- Update local claude_desktop_config.json with path to x64dbgmcp.py

{
  "mcpServers": {
    "x64dbg": {
      "command": "Path\\To\\Python",
      "args": [
        "Path\\to\\x64dbg.py"
      ]
    }
  }
}

Start Debugging
- Launch x64dbg
- Start Claude Desktop
- Check plugin loaded successfully (ALT+L in x64dbg for logs)

Build from Source

git clone [repository-url]
cd x64dbgmcp
cmake -S . -B build
cmake --build build --target all_plugins --config Release

🟨**---TIPS---**🟨

Use the --target all_plugins argument to specify both x32 and x64, otherwise use -A flag to distinguish between either x64 or Win32 build. For example 32 bit build would be:

cmake -S . -B build32 -A Win32 -DBUILD_BOTH_ARCHES=OFF
cmake --build build32 --config Release

If you do not provide the model you are working with with context of where your exe is, it wont have the capabiltiy to restart the binary if it crashes or hangs. So, provide it with the full path of the binary so it can call the CMDEXEC function like "init C:\Absolute\Path\to\EXE"

This will allow for even more automated analysis.

Usage Examples

Set a breakpoint and analyze:

"Set a breakpoint at the main function and step through the first few instructions"

Memory analysis:

"Read 100 bytes from address 0x401000 and show me what's there"

Register inspection:

"What's the current value of RAX and RIP registers?"

Pattern searching:

"Find the pattern '48 8B 05' in the current module"

Demo

Demo of Plug

Related Servers

Authless MCP Server Example

An example of a remote MCP server deployable on Cloudflare Workers without authentication.

mcprouter

A proxy for routing requests to remote MCP servers.

PyMilvus Code Generate Helper

Retrieves relevant code snippets and documents to assist in generating PyMilvus code, requiring a running Milvus instance.

APIMatic MCP

APIMatic MCP Server is used to validate OpenAPI specifications using APIMatic. The server processes OpenAPI files and returns validation summaries by leveraging APIMatic’s API.

Image Tools MCP

Retrieve image dimensions and compress images from URLs or local files using Tinify and Figma APIs.

MCP Audio Inspector

Analyzes audio files and extracts metadata, tailored for game audio development workflows.

Remote MCP Server Authless

An example of a remote MCP server deployable on Cloudflare Workers without authentication.

Postman MCP Server

Run Postman collections using Newman, with support for environment and global variables.

UML-MCP-Server

Generate various UML diagrams from natural language or PlantUML code. Returns PlantUML code, image URLs, and saves diagrams locally.

xMCP Server

A streamable HTTP MCP server that proxies requests to stdio MCP servers within a container, providing a consistent command environment.