Awesome-Mirrors/awesome-embedded-and-iot-security
1
0
Fork 0
mirror of https://github.com/fkie-cad/awesome-embedded-and-iot-security.git synced 2024-06-26 03:12:08 +00:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: Awesome-Mirrors:8e3c90efc0b40a12783ba8bdb424a95c04c43153
Branches Tags
Awesome-Mirrors:master
Awesome-Mirrors:hackaday_ghidra_course
Awesome-Mirrors:Q2-2023-update
Awesome-Mirrors:lint-github-action
Awesome-Mirrors:new_content
Awesome-Mirrors:paid_trainings
..
compare: Awesome-Mirrors:8aff0c05383edb0f6bd624fdc2844a947614a3e0
Branches Tags
Awesome-Mirrors:master
Awesome-Mirrors:hackaday_ghidra_course
Awesome-Mirrors:Q2-2023-update
Awesome-Mirrors:lint-github-action
Awesome-Mirrors:new_content
Awesome-Mirrors:paid_trainings

1 Commits
8e3c90efc0 ... 8aff0c0538

Author SHA1 Message Date
Stjepan Jureković
8aff0c0538
Merge 05b79bc3ef into 1638cd3b97 2023-05-08 17:52:42 -07:00
2 changed files with 10 additions and 12 deletions
Show Stats Expand all files Collapse all files

5
.github/workflows/awesome-lint.yml vendored
View File

@ -13,4 +13,7 @@ jobs:
- uses: actions/checkout@v2
with:
fetch-depth: 0 # fix remark-lint:awesome-git-repo-age
- run: 'npx awesome-lint "readme.md"'
- name: Test awesome-lint with custom file path
uses: jthegedus/github-action-awesome-lint@68fc989d5a01aa127ce502a59f72ebe4166386f1 # commit_sha of tag v0.1.0
with:
args: 'readme.md'

17
readme.md
View File

@ -1,4 +1,3 @@
<!--lint ignore awesome-license-->
<div align="center">
<img width="500" height="350" src="iot_awesome_logo.svg" alt="Awesome">
<br />
@ -9,8 +8,8 @@
> A curated list of awesome resources about embedded and IoT security. The list contains software and hardware tools, books, research papers and more.
Botnets like [Mirai](<https://en.wikipedia.org/wiki/Mirai_(malware)>) have proven that there is a need for more security in embedded and IoT devices. This list shall help beginners and experts to find helpful resources on the topic.
If you are a beginner, you should have a look at the <ins>_Books_</ins> and <ins>_Case Studies_</ins> sections.
If you want to start right away with your own analysis, you should give the <ins>_Analysis Frameworks_</ins> a try.
If you are a beginner, you should have a look at the <ins>*Books*</ins> and <ins>*Case Studies*</ins> sections.
If you want to start right away with your own analysis, you should give the <ins>*Analysis Frameworks*</ins> a try.
They are easy to use and you do not need to be an expert to get first meaningful results.
> Items marked with :euro: are comercial products.
@ -35,7 +34,6 @@ They are easy to use and you do not need to be an expert to get first meaningful
- [Websites](#websites)
- [Blogs](#blogs)
- [Tutorials and Technical Background](#tutorials-and-technical-background)
- [YouTube Channels](#youtube-channels)
- [Conferences](#conferences)
- [Contribute](#contribute)
- [License](#license)
@ -60,7 +58,6 @@ Software tools for analyzing embedded/IoT devices and firmware.
### Analysis Tools
- [Binwalk](https://github.com/ReFirmLabs/binwalk) - Searches a binary for "interesting" stuff, as well as extracts arbitrary files.
- [cwe\_checker](https://github.com/fkie-cad/cwe_checker) - Finds vulnerable patterns in binary executables - ELF support for x86, ARM, and MIPS, experimental bare-metal support.
- [emba](https://github.com/e-m-b-a/emba) - Analyze Linux-based firmware of embedded devices.
- [Firmadyne](https://github.com/firmadyne/firmadyne) - Tries to emulate and pentest a firmware.
- [Firmwalker](https://github.com/craigz28/firmwalker) - Searches extracted firmware images for interesting files and information.
@ -149,7 +146,6 @@ Software tools for analyzing embedded/IoT devices and firmware.
## Research Papers
<!--lint ignore match-punctuation-->
- 2020, Oser et al: [SAFER: Development and Evaluation of an IoT Device Risk Assessment Framework in a Multinational Organization](https://dl.acm.org/doi/abs/10.1145/3414173)
- 2019, Agarwal et al: [Detecting IoT Devices and How They Put Large Heterogeneous Networks at Security Risk](https://www.mdpi.com/1424-8220/19/19/4107)
- 2019, Almakhdhub et al: [BenchIoT: A Security Benchmark for the Internet of Things](https://nebelwelt.net/publications/files/19DSN.pdf)
@ -173,7 +169,7 @@ Software tools for analyzing embedded/IoT devices and firmware.
## Case Studies
<!--lint ignore no-repeat-punctuation-->
- [Binary Hardening in IoT products](https://cyber-itl.org/2019/08/26/iot-data-writeup.html)
- [Cracking Linksys “Encryption”](http://www.devttys0.com/2014/02/cracking-linksys-crypto/)
- [Deadly Sins Of Development](https://youtu.be/nXyglaY9N9w) - Conference talk presenting several real world examples on real bad implementations :tv:.
@ -231,7 +227,6 @@ Software tools for analyzing embedded/IoT devices and firmware.
- [UART explained](https://www.mikroe.com/blog/uart-serial-communication) - An in depth explanation of the UART protocol.
### YouTube Channels
- [Flashback Team](https://www.youtube.com/c/FlashbackTeam) - A duo of hackers explaining their step by step approach to finding and exploiting vulnerabilities in embedded devices.
- [StackSmashing](https://www.youtube.com/c/stacksmashing) - Reverse engineering and hardware hacking of embedded devices.
@ -239,9 +234,9 @@ Software tools for analyzing embedded/IoT devices and firmware.
Conferences focused on embedded and/or IoT security.
- [Hardwear.io](https://hardwear.io/)
- EU, The Hague, September.
- USA, Santa Clara, June.
- [Hardwear.io](https://hardwear.io/)
- EU, The Hague, September.
- USA, Santa Clara, June.
## Contribute