Awesome Embedded and IoT Security

Software Tools

Analysis Frameworks

FwAnalyzer 513 updated 2y ago

Analyze security of firmware based on customized rules. Intended as additional step in DevSecOps, similar to CI.

HAL – The Hardware Analyzer 798 updated 8d ago

A comprehensive reverse engineering and manipulation framework for gate-level netlists.

HomePWN 929 updated 3y ago

Swiss Army Knife for Pentesting of IoT Devices.

Killerbee 837 updated 2y ago

Framework for Testing & Auditing ZigBee and IEEE 802.15.4 Networks.

PRET 4.2k updated 1y ago

Printer Exploitation Toolkit.

Routersploit 13.0k updated 2mo ago

Framework dedicated to exploit embedded devices.

Analysis Tools

Binwalk 13.8k updated 3mo ago

Searches a binary for "interesting" stuff, as well as extracts arbitrary files.

cwe_checker 1.3k updated 1y ago

Finds vulnerable patterns in binary executables - ELF support for x86, ARM, and MIPS, experimental bare-metal support.

emba 3.4k updated 8d ago

Analyze Linux-based firmware of embedded devices.

Firmadyne 2.1k updated 1y ago

Tries to emulate and pentest a firmware.

Firmwalker 1.2k updated 2y ago

Searches extracted firmware images for interesting files and information.

Firmware Slap 479 updated 5y ago

Discovering vulnerabilities in firmware through concolic analysis and function clustering.

Radare2 23.5k updated 8d ago

Software Reverse Engineering framework, also handles popular formats and arbitrary binaries, has an extensive command line toolset.

Trommel 214 (archived)

Searches extracted firmware images for interesting files and information.

cwe_checker

Finds vulnerable patterns in binary executables - ELF support for x86, ARM, and MIPS, experimental bare-metal support.

Extraction Tools

FACT Extractor 89 updated 2mo ago

Detects container format automatically and executes the corresponding extraction tool.

Firmware Mod Kit 971 updated 2mo ago

Extraction tools for several container formats.

Support Tools

JTAGenum 791 updated 2y ago

Add JTAG capabilities to an Arduino.

Misc Tools

Cotopaxi 360 updated 1y ago

Set of tools for security testing of Internet of Things devices using specific network IoT protocols.

dumpflash 314 updated 4y ago

Low-level NAND Flash dump and parsing utility.

flashrom 1.1k updated 1mo ago

Tool for detecting, reading, writing, verifying and erasing flash chips.

Samsung Firmware Magic 233 updated 5y ago

Decrypt Samsung SSD firmware updates.

Hardware Tools

Glasgow 2.1k updated 1mo ago

Tool for exploring and debugging different digital interfaces.

Books

The Hacker's Hardware Toolkit: The best collection of hardware gadgets for Red Team hackers, Pentesters and security researchers 2.2k updated 5y ago

The Hacker's Hardware Toolkit: The best collection of hardware gadgets for Red Team hackers, Pentesters and security researchers

Pentesting Hardware - A Practical Handbook (DRAFT) 501 updated 7y ago

Pentesting Hardware - A Practical Handbook (DRAFT)

Free Training

CSAW Embedded Security Challenge 2019 37 updated 6y ago

CSAW 2019 Embedded Security Challenge (ESC).

IoTGoat 185 updated 6y ago

IoTGoat is a deliberately insecure firmware based on OpenWrt.

Rhme-2015 updated 1y ago

First riscure Hack me hardware CTF challenge.

Rhme-2016 4 updated 1y ago

Riscure Hack me 2 is a low level hardware CTF challenge.

Rhme-2017/2018 updated 1y ago

Riscure Hack Me 3 embedded hardware CTF 2017-2018.

Hardware Hacking 101

Hardware Hacking 101 56 updated 7y ago

Workshop @ BSides Munich 2019.

Embedded and IoT Security

Contents