Your first time on this page? Allow me to give some explanations.
Awesome Embedded and IoT Security
A curated list of awesome embedded and IoT security resources.
Here you can see meta information about this topic like the time we last updated this page, the original creator of the awesome list and a link to the original GitHub repository.
Thank you fkie-cad & contributors
View Topic on GitHub:
fkie-cad/awesome-embedded-and-iot-security
Search for resources by name or description.
Simply type in what you are looking for and the results will be filtered on the fly.
Further filter the resources on this page by type (repository/other resource), number of stars on GitHub and time of last commit in months.
Analysis Frameworks
a tool to analyze filesystem images for security
HAL – The Hardware Analyzer
HomePwn - Swiss Army Knife for Pentesting of IoT Devices
IEEE 802.15.4/ZigBee Security Research Toolkit
Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
Exploitation Framework for Embedded Devices
Analysis Tools
Firmware Analysis Tool
EMBA - The security analyzer for embedded device firmware.
Platform for emulation and dynamic analysis of Linux-based firmware
Script for searching the extracted firmware file system for goodies!
Discovering vulnerabilities in firmware through concolic analysis and function clustering.
UNIX-like reverse engineering framework and command-line toolset
TROMMEL: Sift Through Embedded Device Files to Identify Potential Vulnerable Indicators
Extraction Tools
Standalone Utility for FACT-like extraction
Automatically exported from code.google.com/p/firmware-mod-kit
Support Tools
Given an Arduino compatible microcontroller or Raspberry PI (experimental), JTAGenum scans pins[] for basic JTAG functionality and can be used to enumerate the Instruction Register for undocumented instructions. Props to JTAG scanner and Arduinull which came before JTAGenum and forwhich much of the code and logic is based on. Feel free to branch and modify religiously (readme, credits, whatever)
Misc Tools
Set of tools for security testing of Internet of Things devices using specific network IoT protocols
Low-level NAND Flash dump and parsing utility
Send patches to review.coreboot.org: https://www.flashrom.org/Development_Guidelines#GitHub
Tool for decrypting the firmware files for Samsung SSDs
Hardware Tools
Scots Army Knife for electronics
Bluetooth BLE Tools
ZigBee Tools
SDR Tools
RFID NFC Tools
Books
The best hacker's gadgets for Red Team pentesters and security researchers.
Kinda useful notes collated together publicly
Research Papers
Case Studies
Free Training
CSAW Embedded Security Challenge 2019
Content related to hardware hacking
IoTGoat is a deliberately insecure firmware based on OpenWrt.
RHme+ 2015 challenge
Rhme2 challenge (2016)
Riscure Hack Me embedded hardware CTF 2017-2018.