cheatengine-mcp-bridge MCP — 使用場景, 安裝 & 即時演示

為什麼要用

核心特性

43 MCP tools for memory operations, code analysis, and debugging
Read/write integers, floats, strings, and follow pointer chains
Disassemble functions, identify C++ objects via RTTI, find cross-references
Hardware breakpoints and Ring -1 invisible tracing via DBVM
Auto-detect structures, field types, and generate AOB signatures

即時演示

實際使用效果

cheatengine-mcp-bridge.replay ▶ 就緒

0/0

安裝

選擇你的客戶端

~/Library/Application Support/Claude/claude_desktop_config.json · Windows: %APPDATA%\Claude\claude_desktop_config.json

{
  "mcpServers": {
    "cheatengine-mcp-bridge": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/miscusi-peek/cheatengine-mcp-bridge"
      ]
    }
  }
}

開啟 Claude Desktop → Settings → Developer → Edit Config。儲存後重啟應用。

~/.cursor/mcp.json · .cursor/mcp.json

{
  "mcpServers": {
    "cheatengine-mcp-bridge": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/miscusi-peek/cheatengine-mcp-bridge"
      ]
    }
  }
}

Cursor 使用與 Claude Desktop 相同的 mcpServers 格式。專案級設定優先於全域。

VS Code → Cline → MCP Servers → Edit

{
  "mcpServers": {
    "cheatengine-mcp-bridge": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/miscusi-peek/cheatengine-mcp-bridge"
      ]
    }
  }
}

點擊 Cline 側欄中的 MCP Servers 圖示，然後選 "Edit Configuration"。

~/.codeium/windsurf/mcp_config.json

{
  "mcpServers": {
    "cheatengine-mcp-bridge": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/miscusi-peek/cheatengine-mcp-bridge"
      ]
    }
  }
}

格式與 Claude Desktop 相同。重啟 Windsurf 生效。

~/.continue/config.json

{
  "mcpServers": [
    {
      "name": "cheatengine-mcp-bridge",
      "command": "TODO",
      "args": [
        "See README: https://github.com/miscusi-peek/cheatengine-mcp-bridge"
      ]
    }
  ]
}

Continue 使用伺服器物件陣列，而非映射。

~/.config/zed/settings.json

{
  "context_servers": {
    "cheatengine-mcp-bridge": {
      "command": {
        "path": "TODO",
        "args": [
          "See README: https://github.com/miscusi-peek/cheatengine-mcp-bridge"
        ]
      }
    }
  }
}

加入 context_servers。Zed 儲存後熱重載。

claude mcp add cheatengine-mcp-bridge -- TODO 'See README: https://github.com/miscusi-peek/cheatengine-mcp-bridge'

一行命令搞定。用 claude mcp list 驗證，claude mcp remove 移除。

使用場景

實戰用法： cheatengine-mcp-bridge

How to solve a CTF memory analysis challenge with Cheat Engine MCP

👤 CTF participants working on binary exploitation or game hacking challenges ⏱ ~30 min intermediate

何時使用： You have a CTF challenge that requires finding and manipulating values in a running process.

前置條件

Windows with Cheat Engine installed — Download from cheatengine.org
MCP bridge running — pip install -r MCP_Server/requirements.txt

步驟

Scan for the target value

Attach to the CTF challenge process and scan for an integer value of 100 (my current score).✓ 已複製

→ List of memory addresses containing the value 100
Narrow down the address

I changed the score to 95. Rescan to find which address actually holds the score.✓ 已複製

→ Filtered list with likely candidate addresses
Trace the pointer chain

Find the pointer chain to this address so we can reliably locate it after restart.✓ 已複製

→ Stable pointer path from base module

結果： A reliable pointer chain to the target value for the CTF solution.

注意事項

Value stored as float instead of integer — Try scanning as float or double if integer scan returns no results

Reverse engineer game data structures with AI assistance

👤 Game modders and reverse engineers analyzing proprietary software they own ⏱ ~45 min advanced

何時使用： You want to understand the memory layout of a program's data structures for educational purposes.

前置條件

Cheat Engine + MCP bridge running — pip install mcp pywin32
Target process you own or have authorization to analyze — Launch the application

步驟

Dissect the structure

Attach to the process and dissect the data structure at address 0x1A3F0000. Identify field types and sizes.✓ 已複製

→ Structure layout with field offsets, types, and likely names
Find RTTI class info

Check if this address has RTTI information. What C++ class does it belong to?✓ 已複製

→ Class name and inheritance chain from RTTI

結果： A documented data structure layout with field types and class hierarchy.

注意事項

RTTI stripped from release builds — Fall back to manual structure dissection and pattern analysis

組合

與其他 MCP 搭配，撬動十倍槓桿

cheatengine-mcp-bridge + filesystem

Export discovered structures and pointer maps to files for documentation

Document the data structures we found and save them as a markdown file in my notes folder.✓ 已複製

工具

此 MCP 暴露的能力

工具	輸入參數	何時呼叫
read_memory	address: str, size: int	Read raw bytes from a memory address
read_integer	address: str, size?: int	Read an integer value from memory
scan_all	value: str, type: str	Scan process memory for a specific value
aob_scan	pattern: str	Search for a byte pattern (array of bytes) in memory
disassemble	address: str, count?: int	Disassemble instructions at an address
dissect_structure	address: str, size?: int	Auto-detect structure layout at an address
get_rtti_classname	address: str	Get the C++ class name via RTTI for an object pointer
set_breakpoint	address: str, type?: str	Set a hardware breakpoint for debugging

成本與限制

運行它的成本

API 配額: N/A — all local
每次呼叫 Token 數: 200–1000 tokens per tool call
費用: Free — requires Cheat Engine (free) and Windows
提示: Use targeted scans (aob_scan, read_integer) instead of full memory dumps to reduce output size.

安全

權限、密鑰、影響範圍

憑證儲存： N/A — local tool, no external credentials

資料出站： All operations are local via Named Pipes. No network calls.

⚠ This tool is designed for authorized security research, CTF competitions, and defensive analysis only. Do not use it against systems you don't own or have written authorization to test.
Windows only — requires Named Pipes support and Cheat Engine installed.
Memory manipulation can crash target processes. Save your work before attaching.

故障排查

常見錯誤與修復

Named Pipe connection failed

Ensure Cheat Engine is running and the Lua bridge script is loaded. Check that both CE and the MCP server run with matching privilege levels (both admin or both user).

驗證： Check Cheat Engine's Lua console for pipe creation messages

Access denied reading memory

Run Cheat Engine as Administrator. Some processes require elevated privileges for memory access.

驗證： Right-click Cheat Engine → Run as Administrator

Scan returns no results

Try different value types (float vs int, 4-byte vs 8-byte). The value might be stored in an unexpected format.

驗證： Try a scan with 'All' value type

替代方案

cheatengine-mcp-bridge 對比其他方案

替代方案	何時用它替代	權衡
ida-pro-mcp	You need static binary analysis and disassembly rather than live memory manipulation	Static analysis only but much deeper code understanding
mcp-windbg	You need kernel-level debugging or crash dump analysis on Windows	More powerful debugging but steeper learning curve

cheatengine-mcp-bridge

為什麼要用

核心特性

即時演示

實際使用效果

安裝

選擇你的客戶端

使用場景

實戰用法： cheatengine-mcp-bridge

How to solve a CTF memory analysis challenge with Cheat Engine MCP

前置條件

步驟

注意事項

Reverse engineer game data structures with AI assistance

前置條件

步驟

注意事項

組合

與其他 MCP 搭配，撬動十倍槓桿

工具

此 MCP 暴露的能力

成本與限制

運行它的成本

安全

權限、密鑰、影響範圍

故障排查

常見錯誤與修復

替代方案

cheatengine-mcp-bridge 對比其他方案

更多

資源