Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/craigz28/firmwalker

Script for searching the extracted firmware file system for goodies!
https://github.com/craigz28/firmwalker

Last synced: 5 days ago
JSON representation

Script for searching the extracted firmware file system for goodies!

Host: GitHub
URL: https://github.com/craigz28/firmwalker
Owner: craigz28
License: gpl-3.0
Created: 2016-02-03T01:37:16.000Z (over 8 years ago)
Default Branch: master
Last Pushed: 2023-08-29T18:20:21.000Z (about 1 year ago)
Last Synced: 2024-10-01T18:42:56.691Z (about 1 month ago)
Language: Shell
Size: 142 KB
Stars: 1,044
Watchers: 43
Forks: 186
Open Issues: 5
Metadata Files:
- Readme: README.md
- License: license

Awesome Lists containing this project

awesome-iot-security-resource - firmwalker
awesome-embedded-and-iot-security - Firmwalker - Searches extracted firmware images for interesting files and information. (Software Tools / Analysis Tools)

README

![logo](https://github.com/craigz28/firmwalker/blob/master/firmwalker-logo.jpg)
# firmwalker
A simple bash script for searching the extracted or mounted firmware file system.

It will search through the extracted or mounted firmware file system for things of interest such as:

* etc/shadow and etc/passwd
* list out the etc/ssl directory
* search for SSL related files such as .pem, .crt, etc.
* search for configuration files
* look for script files
* search for other .bin files
* look for keywords such as admin, password, remote, etc.
* search for common web servers used on IoT devices
* search for common binaries such as ssh, tftp, dropbear, etc.
* search for URLs, email addresses and IP addresses
* Experimental support for making calls to the Shodan API using the Shodan CLI

## Usage
* If you wish to use the static code analysis portion of the script, please install eslint: `npm i -g eslint`
* `./firmwalker {path to root file system} {path for firmwalker.txt}`
* Example: `./firmwalker linksys/fmk/rootfs ../firmwalker.txt`
* A file `firmwalker.txt` will be created in the same directory as the script file unless you specify a different filename as the second argument
* Do not put the firmwalker.sh file inside the directory to be searched, this will cause the script to search itself and the file it is creating
* `chmod 0700 firmwalker.sh`

## How to extend
* Have a look under 'data' where the checks live or add eslint rules - http://eslint.org/docs/rules/ to eslintrc.json

## Example Files - https://1drv.ms/f/s!AucQMYXJNefdvGZyeYt16H72VCLv
* squashfs-root.zip - contains files from random extracted router firmware. Firmwalker can be run against this file system.
* rt-ac66u.txt - firmwalker output file
* xc.txt - firmwalker output file from Ubiquiti device
### Script created by Craig Smith and expanded by:
* Athanasios Kostopoulos
* misterch0c

### Links
* https://craigsmith.net
* https://woktime.wordpress.com
* https://www.owasp.org/index.php/OWASP_Internet_of_Things_Project#tab=Firmware_Analysis