Cr4sh

🌴

Dmytro Oleksiuk Cr4sh

🌴

😈 zero-fucks-given infosec research | info: 🔗 keybase.io/d_olex

1.9k followers · 31 following

@d_olex

ctf-skills Public
Forked from ljagiello/ctf-skills

Claude Code skills for solving CTF challenges - web exploitation, binary pwn, crypto, reverse engineering, forensics, OSINT, and more

MIT License Updated Feb 9, 2026
awesome-claude-skills-security Public
Forked from Eyadkelleh/awesome-claude-skills-security

Security testing toolkit for Claude Code: curated SecLists wordlists, injection payloads, and expert agents for authorized pentesting, CTFs, and bug bounties

PHP 1 Updated Dec 8, 2025
pypykatz Public
Forked from skelsec/pypykatz

Mimikatz implementation in pure Python

Python MIT License Updated Nov 11, 2025
smram_parse Public

System Management RAM analysis tool

security analysis firmware forensics dfir uefi smm

Python 84 16 GNU General Public License v3.0 Updated Aug 9, 2024
s6_pcie_microblaze Public

PCI Express DIY hacking toolkit for Xilinx SP605. This repository is also home of Hyper-V Backdoor and Boot Backdoor, check readme for links and info

kernel fpga backdoor rootkit hypervisor uefi xilinx

C 849 166 Updated May 20, 2024
SmmBackdoorNg Public

Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks

backdoor exploit firmware malware boot intel uefi

C 354 56 GNU General Public License v3.0 Updated Nov 3, 2023
pico_dma Public

Autonomous pre-boot DMA attack hardware implant for M.2 slot based on PicoEVB development board

fpga backdoor uefi xilinx dma axi-dma microblaze

C 101 17 Updated Oct 21, 2023
SmmBackdoor Public

First open source and publicly available System Management Mode backdoor for UEFI based platforms. Good as general purpose playground for various SMM experiments.

backdoor firmware malware boot intel uefi smm

C 629 164 GNU General Public License v3.0 Updated Oct 9, 2023
vmlinux-to-elf Public
Forked from marin-m/vmlinux-to-elf

A tool to recover a fully analyzable .ELF from a raw kernel, through extracting the kernel symbol table (kallsyms)

Python 5 1 GNU General Public License v3.0 Updated May 26, 2023
blog Public

Stuff for blog.cr4.sh website

5 3 Updated May 28, 2022
masscan Public
Forked from robertdavidgraham/masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

C 5 2 Other Updated May 14, 2022
efiXplorer Public
Forked from REhints/efiXplorer

IDA plugin for UEFI firmware analysis and reverse engineering automation

C++ 14 6 GNU General Public License v3.0 Updated May 14, 2022
portage Public
Forked from gentoo/portage

Portage Package Manager - this is just a mirror, see https://wiki.gentoo.org/wiki/Project:Portage#Contributing_to_Portage

Python 2 1 GNU General Public License v2.0 Updated May 14, 2022
fwexpl Public

PC firmware exploitation tool and library

windows framework kernel exploit firmware intel uefi

C++ 259 60 GNU General Public License v3.0 Updated May 13, 2022
ThinkPwn Public

Started as arbitrary System Management Mode code execution exploit for Lenovo ThinkPad model line, ended as exploit for industry-wide 0day vulnerability in machines of many vendors

exploit firmware intel uefi vulnerability smm 0day

C 699 86 GNU General Public License v3.0 Updated May 13, 2022
MicroBackdoor Public

Small and convenient C2 tool for Windows targets

python windows backdoor malware shellcode c2

C++ 611 144 GNU General Public License v3.0 Updated Mar 8, 2022
KernelForge Public

A library to develop kernel level Windows payloads for post HVCI era

windows library kernel exploit hypervisor vbs rookit

C++ 483 89 Updated May 18, 2021
zc_pcie_dma Public

DMA attacks over PCI Express based on Xilinx Zynq-7000 series SoC

linux kernel fpga zynq xilinx dma axi-dma

Tcl 71 19 Updated May 1, 2021
PeiBackdoor Public

PEI stage backdoor for UEFI compatible firmware

backdoor firmware malware boot intel uefi pei

C 229 56 GNU General Public License v3.0 Updated May 1, 2021
openreil Public archive

Open source library that implements translator and tools for REIL (Reverse Engineering Intermediate Language)

debugging proof-of-concept code-analysis gdb ida windbg reversing

C 512 76 Other Updated May 1, 2021
qc_debug_monitor Public

Debug messages monitor for Qualcomm cellular modems

debugging security firmware reverse-engineering wireless lte qualcomm

Python 71 20 Updated Nov 1, 2020
chipsec Public
Forked from chipsec/chipsec

Platform Security Assessment Framework

C 2 1 GNU General Public License v2.0 Updated Jun 29, 2020
PowerShell-Suite Public
Forked from FuzzySecurity/PowerShell-Suite

My musings with PowerShell

PowerShell 3 1 BSD 3-Clause "New" or "Revised" License Updated Jul 30, 2019
r0ak Public
Forked from codingtest/r0ak

r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems

C 11 9 Updated Aug 6, 2018
WindowsRegistryRootkit Public archive

Kernel rootkit, that lives inside the Windows registry values data

windows registry kernel backdoor exploit rootkit malware

C 504 144 Updated Oct 8, 2017
Aptiocalypsis Public

Arbitrary SMM code execution exploit for industry-wide 0day vulnerability in AMI Aptio based firmwares

exploit firmware intel ami uefi vulnerability smm

Python 76 16 GNU General Public License v3.0 Updated Oct 22, 2016
secretnet_expl Public

LPE exploits for Secret Net and Secret Net Studio

windows security kernel exploit driver vulnerability lpe

C++ 52 18 Updated Mar 1, 2016
UEFI_boot_script_expl Public

CHIPSEC module that exploits UEFI boot script table vulnerability

exploit firmware intel uefi vulnerability smm dma

Python 134 43 Updated Jan 25, 2016
capstone Public
Forked from capstone-engine/capstone

Capstone disassembly/disassembler framework: Core (Arm, Arm64, Mips, PPC, Sparc, SystemZ, X86, X86_64, XCore) + bindings (Python, Java, Ocaml)

C++ 5 3 Other Updated Jan 23, 2016
ioctlfuzzer Public archive

Automatically exported from code.google.com/p/ioctlfuzzer

windows kernel fuzzing drivers vulnerabilities reversing

C 171 57 Updated Jun 6, 2015

Dmytro Oleksiuk Cr4sh

ctf-skills Public

Uh oh!

awesome-claude-skills-security Public

Uh oh!

pypykatz Public

Uh oh!

smram_parse Public

Uh oh!

s6_pcie_microblaze Public

Uh oh!

SmmBackdoorNg Public

Uh oh!

pico_dma Public

Uh oh!

SmmBackdoor Public

Uh oh!

vmlinux-to-elf Public

Uh oh!

blog Public

Uh oh!

masscan Public

Uh oh!

efiXplorer Public

Uh oh!

portage Public

Uh oh!

fwexpl Public

Uh oh!

ThinkPwn Public

Uh oh!

MicroBackdoor Public

Uh oh!

KernelForge Public

Uh oh!

zc_pcie_dma Public

Uh oh!

PeiBackdoor Public

Uh oh!

openreil Public archive

Uh oh!

qc_debug_monitor Public

Uh oh!

chipsec Public

Uh oh!

PowerShell-Suite Public

Uh oh!

r0ak Public

Uh oh!

WindowsRegistryRootkit Public archive

Uh oh!

Aptiocalypsis Public

Uh oh!

secretnet_expl Public

Uh oh!

UEFI_boot_script_expl Public

Uh oh!

capstone Public

Uh oh!

ioctlfuzzer Public archive

Uh oh!