Crymium is a penetration testing utility designed for security researchers to demonstrate and assess the risks of in-memory credential exposure in Chromium-based browsers.
β οΈ Disclaimer: This tool is intended strictly for authorized security testing, research, and educational purposes. Unauthorized use against systems you do not own or have explicit permission to test is illegal and unethical.
Crymium targets Chromium-based browsers and focuses on extracting sensitive credential data directly from process memory. This approach simulates advanced threat techniques used by attackers who bypass disk-based protections and instead operate in volatile memory.
The tool is useful for:
-
Red team engagements
-
Security audits of endpoint protections
-
Demonstrating risks of credential storage mechanisms
-
Testing EDR/AV detection capabilities
To compile Crymium, you need a MinGW-w64 cross-compilation environment targeting Windows.
sudo apt update
sudo apt install mingw-w64 g++Use the following command to compile the project:
x86_64-w64-mingw32-g++ crymium.cpp -o crymium.exe -O2 -static-libgcc -static-libstdc++ -static -lshell32This produces a statically linked Windows executable.
Run the compiled binary on a Windows system:
crymium.exe
β οΈ Ensure you have proper authorization before executing this tool on any system.
-
Administrator privileges may be required depending on target processes.
-
Behavior may vary depending on browser version and system protections.
-
Modern security solutions may detect or block execution.
-
Run within isolated lab environments (e.g., virtual machines)
-
Test against multiple Chromium-based browsers (Chrome, Edge, Brave, etc.)
-
Observe detection logs from EDR/AV tools
This project is provided for educational and authorized security testing only. The author is not responsible for misuse or damage caused by this tool.
Contributions, suggestions, and improvements are welcome. Please open an issue or submit a pull request.