X64dbgmcp
What is X64dbgmcp
x64dbgmcp is a plug-in for x64dbg that facilitates dynamic analysis by allowing users to interact with the debugger through a conversational interface with a language model. It aims to enhance debugging efficiency by integrating essential functionality from the x64dbg SDK.
Use cases
The plug-in is particularly useful for security researchers, reverse engineers, and software developers who require a powerful debugging tool that allows for natural language interactions. It supports common tasks like executing commands, checking debugger status, and managing memory, streamlining the analysis process.
How to use
To set up x64dbgmcp, place the .dp64 file into the plugins directory of x64dbg and the x64dbgmcp.py file in the source directory mapped to the Claude Desktop configuration. After starting both x64dbg and Claude Desktop, users can verify the plug-in’s successful loading by checking the logs in x64dbg.
Key features
Key features include support for executing debugger commands, checking if the debugger is active, retrieving module lists, and finding base addresses in memory. It is designed to make dynamic analysis more intuitive by leveraging conversational capabilities.
Where to use
The plug-in should be used in the x64dbg environment, specifically for x64 applications. It is ideal for debugging and analyzing software in a Windows environment, mainly targeting tasks that require close examination of memory and execution flow.
Clients Supporting MCP
The following are the main client software that supports the Model Context Protocol. Click the link to visit the official website for more information.
Overview
What is X64dbgmcp
x64dbgmcp is a plug-in for x64dbg that facilitates dynamic analysis by allowing users to interact with the debugger through a conversational interface with a language model. It aims to enhance debugging efficiency by integrating essential functionality from the x64dbg SDK.
Use cases
The plug-in is particularly useful for security researchers, reverse engineers, and software developers who require a powerful debugging tool that allows for natural language interactions. It supports common tasks like executing commands, checking debugger status, and managing memory, streamlining the analysis process.
How to use
To set up x64dbgmcp, place the .dp64 file into the plugins directory of x64dbg and the x64dbgmcp.py file in the source directory mapped to the Claude Desktop configuration. After starting both x64dbg and Claude Desktop, users can verify the plug-in’s successful loading by checking the logs in x64dbg.
Key features
Key features include support for executing debugger commands, checking if the debugger is active, retrieving module lists, and finding base addresses in memory. It is designed to make dynamic analysis more intuitive by leveraging conversational capabilities.
Where to use
The plug-in should be used in the x64dbg environment, specifically for x64 applications. It is ideal for debugging and analyzing software in a Windows environment, mainly targeting tasks that require close examination of memory and execution flow.
Clients Supporting MCP
The following are the main client software that supports the Model Context Protocol. Click the link to visit the official website for more information.
Content
x64dbgmcp
Model Context Protocol for x64dbg
Working Minimal Version
This plug-in currently only supports four functions from the x64dbgSDK which are:
- DbgCmdExec
- DbgIsActive
- GetModuleList
- FindMemBaseAddr
This also only works for x64dbg AFAIK, if you want x86 you may be able to just compile with -D BUILD_X64=OFF
I want to add most of the functions provided by the sdk so dynamic analysis can be as easy as conversing with an LLM. Link to functions here
Most of the HTTP server code was generated by Claude Sonnet 3.7.
This is my first repo, so I realize I may have made some mistakes. Any advice or additional functionality is welcome.
Easy set-up
- Grab the .dp64 file from the build\release dir and move it to your defualtx64dbgdir\release\x64\plugins dir
- Grab the x64dbgmcp.py file from src dir and map your claude_desktop_config file to its install location
- Start x64dbg , then start Claude Desktop. You can always check the logs to make sure the plug-in loaded successfully by pressing ALT+L in x64dbg.
BUILD
- clone repo
- cd build
- cmake … -DBUILD_X64=ON
- cmake --build . --config Release
DEMO
Dev Tools Supporting MCP
The following are the main code editors that support the Model Context Protocol. Click the link to visit the official website for more information.
