Craig Smith

VP Of Security at Hacktop Studios, LLC

Seattle, Washington, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

👤
Senior
🎓
Top School
Craig Smith is a VP of Security and seasoned security researcher with 14+ years building pragmatic, product-focused security programs across transportation, hardware, and cloud platforms. He combines deep technical expertise in exploit development, reverse engineering, automotive diagnostics and side-channel analysis with hands-on leadership—bringing organizations to SOC 2, ISO 27001 and SOX compliance while reducing cyber insurance costs. A published author of The Car Hacker's Handbook and prolific open-source contributor (notably enhancements to the Metasploit Framework and vehicle-focused tools like CaringCaribou), he blends research, tooling and standards engagement with SAE/ISO/IEEE/W3C and government groups. Craig has repeatedly operated as the de facto CISO for complex engineering organizations, running purple teams, product security, IT and GSOC efforts and translating board-level risk into technical roadmaps. He also runs indie ventures from game engine design to virtual streaming platforms, underscoring a rare mix of entrepreneurial creativity and deep offensive security craft.
code14 years of coding experience
job17 years of employment as a software developer
bookAssociates Computer Programming, Associates Computer Programming at Cincinnati State
github-logo-circle

Github Skills (23)

python10
apidoc10
sdl10
meta10
it-security10
c1110
security10
c1710
ruby10
security-testing10
api10
sys10
can-bus10
embedded10
meta-framework10

Programming languages (7)

TypeScriptC++CRustGDScriptRubyPython

Github contributions (5)

github-logo-circle
zombieCraig/ICSim

Jun 2014 - Jun 2020

Instrument Cluster Simulator
Role in this project:
userEmbedded Systems Engineer / IoT Developer
Contributions:18 commits, 10 PRs, 12 pushes in 6 years 1 month
Contributions summary:Craig primarily focused on implementing features for the Instrument Cluster Simulator (icsim). They added keyboard equivalents for joystick controls related to door functionality, including locking/unlocking. They also integrated speed limiting and PS3 controller support, enhancing the user's ability to interact with the simulated instrument cluster. Furthermore, the user implemented a model-specific configuration to profile BMW systems.
simulatorclustersimulationautomotive
rapid7/metasploit-framework

Oct 2012 - Sep 2017

Metasploit Framework
Role in this project:
userBackend & Security Engineer
Contributions:37 commits, 12 PRs, 17 comments in 4 years 11 months
Contributions summary:Craig contributed significantly to the Metasploit Framework, focusing on the hardware bridge API and automotive-related functionalities. Their work included implementing an initial bridge API that supports the HW rest protocol and UDS calls for automotive module development, specifically adding support for reading vehicle information. They also addressed bugs, improved error handling, and added functionalities to the ELM327 relay tool. Furthermore, the user enhanced the framework's capabilities by introducing Zigbee support.
metasploitmetasploit-framework
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial