Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Sign up
Appearance settings
@mrexodia
mrexodia
Follow

Duncan Ogilvie mrexodia

🍍
Reverse engineer, creator of @x64dbg and 100+ other projects. Love binary analysis and Windows internals. Dreaming about doing open source full time...

Block or report mrexodia

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
mrexodia /README.md

Current projects

Recently I've been working on:

  • MCP Server for IDA Pro to allow LLMs to interact with IDA directly: ida-pro-mcp
  • A beginner-friendly build system based on CMake and TOML: cmkr
  • A python library to call functions in dump files (useful for malware analysis): dumpulator
  • A ghetto user mode emulator for kernel drivers to analyze an anti-cheat: driver_unpacking

See the pinned repositories below for other interesting things I've been up to.

❀️ Sponsoring

If you like or rely on the work I do, please consider sponsoring me. I do open source in my free time and it would be really great if I could do more of it.

Discord

πŸ“ˆ My GitHub Stats

mrexodia's GitHub Stats

JetBrains

ID=26012022/8686633 ID=13012023/10971717

Pinned Loading

  1. build-cpp/cmkr build-cpp/cmkr Public

    Modern build system based on CMake and TOML.

    C++ 577 39

  2. dumpulator dumpulator Public

    An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).

    C 834 47

  3. AppInitHook AppInitHook Public

    Global user-mode hooking framework, based on AppInit_DLLs. The goal is to allow you to rapidly develop hooks to inject in an arbitrary process.

    C 181 18

  4. TitanHide TitanHide Public

    Hiding kernel-driver for x86/x64.

    C 2.5k 457

  5. thesecretclub/SandboxBootkit thesecretclub/SandboxBootkit Public

    Bootkit for Windows Sandbox to disable DSE/PatchGuard.

    C++ 304 43

  6. ida-pro-mcp ida-pro-mcp Public

    AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

    Python 3.9k 392

AltStyle γ«γ‚ˆγ£γ¦ε€‰ζ›γ•γ‚ŒγŸγƒšγƒΌγ‚Έ (->γ‚ͺγƒͺγ‚ΈγƒŠγƒ«) /