x64dbg MCP Server

39 tools. 16 can modify or destroy data without limits.

2 destructive tools with no built-in limits. Policy required.

Last updated:

16 can modify or destroy data
23 read-only
39 tools total

Community server · catalogue entry verified 29/06/2026

How to control x64dbg MCP Server ↓

What x64dbg MCP Server exposes to your agents

Read (23) Write / Execute (13) Destructive / Financial (2)
Critical Risk

The most dangerous x64dbg MCP Server tools

16 of x64dbg MCP Server's 39 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control x64dbg MCP Server

PolicyLayer is an MCP gateway — it sits between your AI agents and x64dbg MCP Server, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations
{
  "close_debugger": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "create_minidump": {
    "limits": [
      {
        "counter": "create_minidump_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "analyze_function": {
    "limits": [
      {
        "counter": "analyze_function_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register x64dbg MCP Server — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON X64DBG →

Instant setup, no code required.

All 39 x64dbg MCP Server tools

READ 23 tools
Read analyze_function Analyze a function: boundaries, size, instruction count, call graph, and isLeaf flag. Read analyze_suspicious_apis Cross-reference the module Read check_section_anomalies Check PE sections for structural anomalies. Read detect_anti_debug Scan the module for common anti-debugging techniques. Read detect_packing Scan a PE module for signs of packing or obfuscation. Read disassemble Disassemble instructions starting at an address or symbol. Read find_strings Find ASCII and Unicode strings in the debuggee Read generate_security_report START HERE for malware triage. Run all four security checks in parallel and produce a consolidated report. Read get_call_stack Get the call stack (backtrace) of the current thread. REQUIRES: state= Read get_cross_references Find all cross-references (xrefs) to or from an address. Read get_exports List exported functions/symbols from a PE module Read get_imports List imported functions for a module: importing DLL name, function name, ordinal, IAT address. Read get_memory_map List all virtual memory regions of the debuggee process: Read get_modules List all modules (main EXE + loaded DLLs): name, path, base address, size, entry point, sections. Read get_pe_header Parse the PE header of a loaded module. Read get_registers Read CPU register values of the active thread. REQUIRES: state= Read get_status Query the current session/debugger state. Always safe — never changes debugger state. Read get_threads List all threads in the debuggee process: TID, handle, entry address, TEB, state, priority, name. Read list_functions List all recognized functions in the debuggee: address, name, size, module. Read list_sessions List all active debugging sessions: id, state, pid, architecture, executable, breakpointCount. Read read_memory Read raw bytes from the debuggee Read search_memory Search the debuggee Read wait_for_state Block until the session reaches a target state, then return a full snapshot.

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about x64dbg MCP Server

Can an AI agent delete data through the x64dbg MCP Server MCP server? +

Yes. The x64dbg MCP Server server exposes 2 destructive tools including close_debugger, terminate_session. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through x64dbg MCP Server? +

The x64dbg MCP Server server has 2 write tools including create_minidump, save_memory_dump. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach x64dbg MCP Server.

How many tools does the x64dbg MCP Server MCP server expose? +

39 tools across 3 categories: Execute, Read, Write. 23 are read-only. 16 can modify, create, or delete data.

How do I enforce a policy on x64dbg MCP Server? +

Register the x64dbg MCP Server MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every x64dbg MCP Server tool call.

Deterministic rules across all 39 x64dbg MCP Server tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

39 x64dbg MCP Server tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.