Skip to content
View mrexodia's full-sized avatar
❤️
‌‌
❤️
‌‌

Sponsors

@dzzie
@fr0zenbag
Private Sponsor
@toyray
@expend20
@buzzer-re
@leandrofroes
@54
@emesare
@merces
@Dan0xE
@clayne
Private Sponsor

Sponsoring

@horsicq
@kobalicek
@vrtmrz

Organizations

@x64dbg @thesecretclub

Block or report mrexodia

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
mrexodia/README.md

Current projects

Recently I've been working on:

  • MCP Server for IDA Pro to allow LLMs to interact with IDA directly: ida-pro-mcp
  • A beginner-friendly build system based on CMake and TOML: cmkr
  • A python library to call functions in dump files (useful for malware analysis): dumpulator
  • A ghetto user mode emulator for kernel drivers to analyze an anti-cheat: driver_unpacking

See the pinned repositories below for other interesting things I've been up to.

❤️ Sponsoring

If you like or rely on the work I do, please consider sponsoring me. I do open source in my free time and it would be really great if I could do more of it.

📈 My GitHub Stats

mrexodia's GitHub Stats

JetBrains

ID=26012022/8686633 ID=13012023/10971717

Pinned Loading

  1. build-cpp/cmkr Public

    Modern build system based on CMake and TOML.

    C++ 502 34

  2. dumpulator Public

    An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).

    C 789 44

  3. AppInitHook Public

    Global user-mode hooking framework, based on AppInit_DLLs. The goal is to allow you to rapidly develop hooks to inject in an arbitrary process.

    C 168 17

  4. TitanHide Public

    Hiding kernel-driver for x86/x64.

    C 2.3k 430

  5. thesecretclub/SandboxBootkit Public

    Bootkit for Windows Sandbox to disable DSE/PatchGuard.

    C++ 274 39

  6. ida-pro-mcp Public

    MCP Server for IDA Pro

    Python 853 63

1,049 contributions in the last year

Contribution Graph
Day of Week April May June July August September October November December January February March
Sunday
Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Less
No contributions.
Low contributions.
Medium-low contributions.
Medium-high contributions.
High contributions.
More

Contribution activity

April 2025

Created 8 commits in 2 repositories
Created 1 repository
Opened 1 pull request in 1 repository
wjakob/nanobind 1 open

Created an issue in mrexodia/ida-pro-mcp that received 1 comment

Add proper handling for disassembly/decompilation tokens

IDA has an undocumented format of tokens for their disassembly/decompilation. This might be helpful when generating pseudocode/disassembly because …

1 comment
Opened 8 other issues in 2 repositories
  • License
    This contribution was made on Mar 31
6 contributions in private repositories Apr 6
Loading