NadavLor / windbg-ext-mcpLinks
WinDbg-ext-MCP bridges your favorite LLM client (like Cursor, Claude, or VS Code) with WinDbg, enabling real-time, AI assisted kernel debugging. Write prompts in your AI coding assistant and receive instant, context-aware analysis and insights from your live kernel debugging session.
☆50Updated 3 months ago
Alternatives and similar repositories for windbg-ext-mcp
Users that are interested in windbg-ext-mcp are comparing it to the libraries listed below
Sorting:
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆68Updated 3 months ago
- An x64dbg plugin which helps make sense of long C++ symbols☆57Updated 2 years ago
- MCP for reverse engineering☆46Updated 9 months ago
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆37Updated last year
- Example of building an application verifer DLL☆50Updated last year
- monitors hidden syscalls called from call of duty anticheat☆88Updated 11 months ago
- anti-ransomware file-system filter☆68Updated last year
- An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆73Updated 9 months ago
- Windows driver template, using C++20 & cmake & GithubActions☆24Updated last year
- vm_str.hpp is a header only string obfuscator.☆98Updated 4 months ago
- A DLL Injection Detector for Windows.☆76Updated 2 months ago
- ZMQ and Messagepack Powered Remote Automation Plugin for x64dbg☆57Updated 3 months ago
- Virtual Trust Level (VTL 1) secure call tracing☆84Updated 4 months ago
- Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post☆75Updated last year
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆49Updated last year
- dynamic binary instrumentation, analysis, and patching framework☆100Updated last week
- Application Verifier Dynamic Fault Injection☆39Updated 4 months ago
- Hook all callbacks which are registered with LdrRegisterDllNotification☆95Updated 9 months ago
- ☆29Updated last week
- Generate a PDB file given the old PDB file and an address mapping☆51Updated 5 months ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆78Updated 6 months ago
- Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…☆61Updated 2 weeks ago
- ☆21Updated 10 months ago
- LLVM based obfuscation engine☆108Updated 6 months ago
- Sample for Creating a new kernel object type and supporting API☆26Updated last year
- Elevate arbitrary MSR writes to kernel execution.☆42Updated 2 years ago
- Windows kernel driver template for cmkr and llvm-msvc.☆35Updated 2 years ago
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆25Updated 3 years ago
- Remove WPP calls from hexrays decompiled code☆54Updated 9 months ago
- Header-only C++ library for producing PE files.☆34Updated 2 years ago