Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

awesome-embedded-and-iot-security

A curated list of awesome embedded and IoT security resources.
https://github.com/fkie-cad/awesome-embedded-and-iot-security

Last synced: 2 days ago
JSON representation

Websites
- Blogs
- RFID NFC Tools
  - Hacking Printers Wiki - All things printer.
  - OWASP Embedded Application Security Project - Development best practices and list of hardware and software tools.
  - OWASP Internet of Things Project - IoT common vulnerabilities and attack surfaces.
  - Router Passwords - Default login credential database sorted by manufacturer.
  - Siliconpr0n - A Wiki/Archive of all things IC reversing.
- Tutorials and Technical Background
  - Azeria Lab - Miscellaneous ARM related Tutorials.
  - JTAG Explained - A walkthrough covering UART and JTAG bypassing a protected login shell.
  - UART explained - An in depth explanation of the UART protocol.
  - Reverse Engineering Serial Ports - Detailed tutorial about how to spot debug pads on a PCB.
  - Reverse Engineering Serial Ports - Detailed tutorial about how to spot debug pads on a PCB.
- YouTube Channels
  - Flashback Team - A duo of hackers explaining their step by step approach to finding and exploiting vulnerabilities in embedded devices.
  - StackSmashing - Reverse engineering and hardware hacking of embedded devices.
Software Tools
- Analysis Frameworks
  - Improving your firmware security analysis process with FACT - Conference talk about FACT :tv:.
  - EXPLIoT - Pentest framework like Metasploit but specialized for IoT.
  - FACT - The Firmware Analysis and Comparison Tool - Full-featured static analysis framework including extraction of firmware, analysis utilizing different plug-ins and comparison of different firmware versions.
  - FwAnalyzer - Analyze security of firmware based on customized rules. Intended as additional step in DevSecOps, similar to CI.
  - HomePWN - Swiss Army Knife for Pentesting of IoT Devices.
  - IoTSecFuzz - Framework for automatisation of IoT layers security analysis: hardware, software and communication.
  - Killerbee - Framework for Testing & Auditing ZigBee and IEEE 802.15.4 Networks.
  - PRET - Printer Exploitation Toolkit.
  - Routersploit - Framework dedicated to exploit embedded devices.
  - HomePWN - Swiss Army Knife for Pentesting of IoT Devices.
  - HAL – The Hardware Analyzer - A comprehensive reverse engineering and manipulation framework for gate-level netlists.
- Analysis Tools
  - emba - Analyze Linux-based firmware of embedded devices.
  - Firmwalker - Searches extracted firmware images for interesting files and information.
  - Ghidra - Software Reverse Engineering suite; handles arbitrary binaries, if you provide CPU architecture and endianness of the binary.
  - Radare2 - Software Reverse Engineering framework, also handles popular formats and arbitrary binaries, has an extensive command line toolset.
  - Binwalk - Searches a binary for "interesting" stuff, as well as extracts arbitrary files.
  - cwe\_checker - Finds vulnerable patterns in binary executables - ELF support for x86, ARM, and MIPS, experimental bare-metal support.
  - emba - Analyze Linux-based firmware of embedded devices.
  - Firmadyne - Tries to emulate and pentest a firmware.
  - Firmwalker - Searches extracted firmware images for interesting files and information.
  - Firmware Slap - Discovering vulnerabilities in firmware through concolic analysis and function clustering.
  - Trommel - Searches extracted firmware images for interesting files and information.
  - Radare2 - Software Reverse Engineering framework, also handles popular formats and arbitrary binaries, has an extensive command line toolset.
- Extraction Tools
  - Firmware Mod Kit - Extraction tools for several container formats.
  - The SRecord package - Collection of tools for manipulating EPROM files (can convert lots of binary formats).
  - FACT Extractor - Detects container format automatically and executes the corresponding extraction tool.
- Support Tools
  - OpenOCD - Free and Open On-Chip Debugging, In-System Programming and Boundary-Scan Testing.
Hardware Tools
- Misc Tools
  - Bus Blaster - Detects and interacts with hardware debug ports like [UART](https://en.wikipedia.org/wiki/Universal_asynchronous_receiver-transmitter) and [JTAG](https://en.wikipedia.org/wiki/JTAG).
  - Bus Pirate - Detects and interacts with hardware debug ports like UART and JTAG.
  - Shikra - Detects and interacts with hardware debug ports like UART and JTAG. Among other protocols.
  - JTAGULATOR - Detects JTAG Pinouts fast.
  - Saleae - Easy to use Logic Analyzer that support many protocols :euro:.
  - Ikalogic - Alternative to Saleae logic analyzers :euro:.
  - HydraBus - Open source multi-tool hardware similar to the BusPirate but with NFC capabilities.
  - ChipWhisperer - Detects Glitch/Side-channel attacks.
  - J-Link - J-Link offers USB powered JTAG debug probes for multiple different CPU cores :euro:.
- Bluetooth BLE Tools
  - UberTooth One - Open source 2.4 GHz wireless development platform suitable for Bluetooth experimentation.
  - Bluefruit LE Sniffer - Easy to use Bluetooth Low Energy sniffer.
- ZigBee Tools
  - ApiMote - ZigBee security research hardware for learning about and evaluating the security of IEEE 802.15.4/ZigBee systems. Killerbee compatible.
  - Freakduino - Low Cost Battery Operated Wireless Arduino Board that can be turned into a IEEE 802.15.4 protocol sniffer.
- SDR Tools
  - RTL-SDR - Cheapest SDR for beginners. It is a computer based radio scanner for receiving live radio signals frequencies from 500 kHz up to 1.75 GHz.
  - HackRF One - Software Defined Radio peripheral capable of transmission or reception of radio signals from 1 MHz to 6 GHz (half-duplex).
  - YardStick One - Half-duplex sub-1 GHz wireless transceiver.
  - LimeSDR - Software Defined Radio peripheral capable of transmission or reception of radio signals from 100 KHz to 3.8 GHz (full-duplex).
  - BladeRF 2.0 - Software Defined Radio peripheral capable of transmission or reception of radio signals from 47 MHz to 6 GHz (full-duplex).
  - USRP B Series - Software Defined Radio peripheral capable of transmission or reception of radio signals from 70 MHz to 6 GHz (full-duplex).
- RFID NFC Tools
  - Proxmark 3 RDV4 - Powerful general purpose RFID tool. From Low Frequency (125kHz) to High Frequency (13.56MHz) tags.
  - ChamaleonMini - Programmable, portable tool for NFC security analysis.
  - HydraNFC - Powerful 13.56MHz RFID / NFC platform. Read / write / crack / sniff / emulate.
Books
- RFID NFC Tools
Research Papers
- RFID NFC Tools
Case Studies
- RFID NFC Tools
  - Binary Hardening in IoT products
  - Deadly Sins Of Development - Conference talk presenting several real world examples on real bad implementations :tv:.
  - Dumping firmware from a device's SPI flash with a buspirate
  - Hacking the PS4 - Introduction to PS4's security.
  - IoT Security@CERN
  - Multiple vulnerabilities found in the D-link DWR-932B
  - Pwning the Dlink 850L routers and abusing the MyDlink Cloud protocol
  - PWN Xerox Printers (...again)
  - Reversing Firmware With Radare
  - Reversing the Huawei HG533
  - Deadly Sins Of Development - Conference talk presenting several real world examples on real bad implementations :tv:.
  - Binary Hardening in IoT products
  - Cracking Linksys “Encryption”
  - Hacking the DSP-W215, Again
  - Cracking Linksys “Encryption”
  - Hacking the DSP-W215, Again
Free Training
- RFID NFC Tools
  - Embedded Security CTF - Microcorruption: Embedded Security CTF.
  - Hardware Hacking 101 - Workshop @ BSides Munich 2019.
Conferences
- YouTube Channels
  - Hardwear.io

Programming Languages

Python 8 Shell 3 C 2 C++ 1 Rust 1 Go 1

Categories

Books 66 Software Tools 27 Websites 26 Hardware Tools 22 Research Papers 20 Case Studies 16 Free Training 2 License 1 Conferences 1

Sub Categories

RFID NFC Tools 112 Blogs 14 Analysis Tools 12 Analysis Frameworks 11 Misc Tools 9 SDR Tools 6 Tutorials and Technical Background 5 YouTube Channels 4 Extraction Tools 3 Bluetooth BLE Tools 2 ZigBee Tools 2 Support Tools 1

Keywords

security 7 reverse-engineering 4 iot 3 binary-analysis 3 firmware-analysis 3 firmware-tools 3 security-tools 2 static-analyzer 2 vulnerability-scanner 2 infosec 2 embedded-linux 2 python 2 security-automation 2 hacking 2 firmware 2 creds 1 bruteforce 1 dictionary-attack 1 embedded 1 exploits 1 router 1 router-exploitation-framework 1 routersploit 1 nfc 1 hack 1 ble 1 security-audit 1 liunx 1 filesystem-security 1 filesystem-images 1 filesystem 1 android 1 testing 1 Internet of Things 1 Exploitatio 1 netlist 1 integrated-circuits 1 hardware 1 hal 1 fpga 1 embedded-security 1 radare2 1 malware-analysis 1 forensics 1 disassembler 1 commandline 1 c 1 vulnerability-discovery 1 exploit 1 angr 1