Offensive security and hardware research. I break systems to find out how they fail, then write the tools to do it again.
Based in India. I work across RF and IoT (mostly ESP32), Android reversing and rooting, and pentest tooling. My bench has two laptops, an SDR, a JTAG, a scope, and a logic analyzer. The work happens there, not in the cloud.
- ESP32-HARNESS: ESP32 pentest and telemetry firmware. 2.4 GHz RF work, RF24 experiments, side-channel probing.
- OU Hunt Report: red-team engagement writeup. Six validated findings, each with a proof of concept.
- pypentest-ai: offline LLM-driven pentest agent that runs on local models.
| Repo | What it is |
|---|---|
| termux-security-toolkit | Scanner, password auditor, and scripts. The most-used thing I've put up. |
| ESP32-HARNESS | RF and telemetry firmware for ESP32 security research. |
| ou-hunt-report | Red-team hunt with six validated vulns and POCs. |
| android-reverse-engineering | APK analysis, smali, Frida, Xposed. |
| android-rooting-masterclass | From user-space DEX edits to kernel hooking. |
| pypentest-ai | Autonomous pentest framework on local and API LLMs. |
| awesome-ai-security-tools | Curated registry of AI/LLM security tooling. |
| awesome-esp32-security | Tools and hardware research for ESP32 security. |
| HarryPanel | Full-stack hosting control panel. |
| portfolio | Source for this site. |
Repo content lives at writeups.harrydev.one.
Short, practical sheets I keep updated:
- ESP32 pentest cheat sheet: recon, flashing, BLE, WiFi, SPI/I2C, firmware.
- Android RE cheat sheet: APK analysis, Frida hooks, static and dynamic analysis.
- Security audit checklist: web, network, mobile, cloud, code review.
- Termux security setup: packages and quick commands for mobile pentesting.
- Site: harrydev.one
- Email: krishy2122@gmail.com
- X: @harry6ez

