Donx64mcp-dbg – an injected DLL debugger toolkit with an MCP server for x64 apps (github.com)

The recently announced Donx64mcp-dbg is an advanced in-process debugging toolkit designed for Windows x64 applications, allowing AI agents like Claude and Codex to debug and inspect processes in real time. This toolkit facilitates DLL injection and grants over 40 debugging commands through a named pipe, making it particularly relevant for security researchers, reverse engineers, and participants in Capture The Flag (CTF) challenges. The significant capabilities include memory operations, disassembly using the Zydis library, API hooking with MinHook, and advanced pattern scanning akin to IDA Pro. Notably, Donx64mcp-dbg features a stealth injection mode that hides its operations from common debugger detection mechanisms, employing a sophisticated three-tier anti-debugging engine. This enhances its utility for authorized security analysis by providing a discreet debugging environment. Users can utilize the toolkit through the MCP protocol, which streamlines the process by integrating it seamlessly into Claude and Codex workflows. With straightforward installation via a script, the toolkit ensures that powerful debugging commands are readily accessible, thereby elevating debugging capabilities for developers and researchers in the AI/ML community.