https://ntninja.com/tags/win32/Recent content in Win32 on NTNINJAHugo -- gohugo.ioen© 2026 Ryan JohnsonFri, 06 Feb 2026 09:00:00 -0500https://ntninja.com/posts/windbg-mcp-with-wedp/Fri, 06 Feb 2026 09:00:00 -0500https://ntninja.com/posts/windbg-mcp-with-wedp/<p>I have been late to the game with adopting GenAI into my workflow, but we are at full steam now. I have slowly been adding it into my daily routines to see where I can gain efficiency leveraging this new tech. One of the big areas I am playing with right now is for writing Windows based CTF challenges, and now in the past few days, seeing how I can leverage GenAI for writing POCs for these new challenges. In this post we are going to walk through my initial setup for using the <a href="https://github.com/NadavLor/windbg-ext-mcp" target="_blank" rel="noreferrer">WinDbg EXT MCP</a> to control a windbg instance that has the extension I wrote a long time ago, <a href="https://gitlab.com/ntninja-dev/windows-exploit-development/wedp" target="_blank" rel="noreferrer">WEDP (Windows Exploit Development Plugin)</a>, to improve the process of going from crash to POC.</p>https://ntninja.com/posts/rundll-fundll/Sun, 25 Sep 2022 09:00:00 -0500https://ntninja.com/posts/rundll-fundll/<p>Have you ever written a DLL that had standalone functionality and wasn&rsquo;t meant to be used as a library? Considering that library is in the name, this idea seems contrary to what a library should be. Well, you can thank Microsoft for providing a way to execute standalone functionality from a DLL. Not only did they do that, they also provide DLLs with functionality that you need this utility to run!!! Say hello to rundll32, pronounced run dull all smashed as one word in some circles.</p>