awesome-embedded-security
Embedded security toolset
A curated list of tools and knowledge for securing embedded systems.
Awesome list for embedded security tools and knowledge
23 stars
3 watching
1 forks
last commit: 10 months ago
Linked from 1 awesome list
awesomeawesome-listembeddedembedded-securitysecuritysecurity-tools
Awesome Embedded Security / Software Tools / Binary Parsing and Analysis Tools | |||
| Kaitai Struct | Kaitai Struct is a declarative language used to describe various binary data structures, laid out in files or in memory: i.e. binary file formats, network stream packet formats, etc | ||
| Binwalk | 11,412 | 4 days ago | Binwalk is a fast, easy to use tool for analyzing, reverse engineering, and extracting firmware images |
| OFRAK | 1,876 | about 16 hours ago | OFRAK is a binary analysis and modification platform that combines the ability to unpack, analyze, modify, and repack binaries |
Awesome Embedded Security / Software Tools / Disassember/Decompilers | |||
| IDA Pro | IDA Pro as a disassembler is capable of creating maps of their execution to show the binary instructions that are actually executed by the processor in a symbolic representation (assembly language). Advanced techniques have been implemented into IDA Pro so that it can generate assembly language source code from machine-executable code and make this complex code more human-readable | ||
| Vivisect | 941 | 3 months ago | A combined disassembler/static analysis/symbolic execution/debugger framework |
| Binary Ninja | Binary Ninja is an interactive disassembler, decompiler, and binary analysis platform for reverse engineers, malware analysts, vulnerability researchers, and software developers that runs on Windows, macOS, and Linux | ||
| Cutter | Free and Open Source RE Platform powered by Rizini | ||
| Rizin | A free and open-source Reverse Engineering framework, providing a complete binary analysis experience with features like Disassembler, Hexadecimal editor, Emulation, Binary inspection, Debugger, and more | ||
| radare2 | A free/libre toolchain for easing several low level tasks like forensics, software reverse engineering, exploiting, debugging. It is composed by a bunch of libraries (which are extended with plugins) and programs that can be automated with almost any programming language | ||
| Ghidra | A software reverse engineering (SRE) suite of tools developed by NSA's Research Directorate in support of the Cybersecurity mission | ||
| Angr Management | 911 | 5 days ago | Angr is a multi-architecture binary analysis toolkit, with the capability to perform dynamic symbolic execution (like Mayhem, KLEE, etc.) and various static analyses on binaries. If you'd like to learn how to use it, you're in the right place! |
Awesome Embedded Security / Software Tools / Debugging Tools | |||
| Open OCD | OpenOCD provides on-chip programming and debugging support with a layered architecture of JTAG interface and TAP support | ||
| GDB | GDB, the GNU Project debugger, allows you to see what is going on `inside' another program while it executes -- or what another program was doing at the moment it crashed | ||
| GEF | GEF (pronounced ʤɛf - "Jeff") is a kick-ass set of commands for X86, ARM, MIPS, PowerPC and SPARC to make GDB cool again for exploit dev. It is aimed to be used mostly by exploit developers and reverse-engineers, to provide additional features to GDB using the Python API to assist during the process of dynamic analysis and exploit development | ||
Awesome Embedded Security / Software Tools / Language Specific Decompilers / .NET | |||
| ILSpy | 21,743 | 15 days ago | .NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform! |
Awesome Embedded Security / Software Tools / Security Auditing Frameworks | |||
| EXPLIoT | EXPLIoT is a Framework for security testing and exploiting IoT products and IoT infrastructure. It provides a set of plugins (test cases) which are used to perform the assessment and can be extended easily with new ones. The name EXPLIoT (pronounced expl-aa-yo-tee) is a pun on the word exploit and explains the purpose of the framework i.e. IoT exploitation | ||
| Metasploit | Knowledge is power, especially when it's shared. A collaboration between the open source community and Rapid7, Metasploit helps security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness; it empowers and arms defenders to always stay one step (or two) ahead of the game | ||
| Firmware Analysis and Comparison Tool (FACT) | The Firmware Analysis and Comparison Tool (FACT) is intended to automate Firmware Security analysis (Router, IoT, UEFI, Webcams, Drones, …). Thereby it shall be easy to use (web UI), extend (plug-in system) and integrate (REST API) | ||
| FwAnalyzer (Firmware Analyzer) | 493 | about 1 year ago | FwAnalyzer is a tool to analyze (ext2/3/4), FAT/VFat, SquashFS, UBIFS filesystem images, cpio archives, and directory content using a set of configurable rules. FwAnalyzer relies on e2tools for ext filesystems, mtools for FAT filesystems, squashfs-tools for SquashFS filesystems, and ubi_reader for UBIFS filesystems. cpio for cpio archives. SELinux/Capability support for ext2/3/4 images requires a patched version of e2tools. SELinux/Capability support for SquashFS images requires a patched version of squashfs-tools |
Awesome Embedded Security / Hardware Tools / Hardware Reverse Engineering Mulitools | |||
| Tiguard | 625 | about 2 months ago | An FTDI FT2232H-based multi-protocol tool for hardware hacking |
| Bus Pirate | 632 | 8 months ago | The Bus Pirate is an open source hacker multi-tool that talks to electronic stuff. It's got a bunch of features an intrepid hacker might need to prototype their next project |
Awesome Embedded Security / Hardware Tools / Logic Analyzer | |||
| Saleae | Saleae logic analyzers are used by electrical engineers, firmware developers, enthusiasts, and engineering students to record, measure, visualize, and decode the signals in their electrical circuits | ||
| Sigrok | The sigrok project aims at creating a portable, cross-platform, Free/Libre/Open-Source signal analysis software suite that supports various device types (e.g. logic analyzers, oscilloscopes, and many more) | ||
Awesome Embedded Security / Hardware Tools / RF Tools (Non-SDR) | |||
| Flipper Zero | Flipper Zero is a portable multi-tool for pentesters and geeks in a toy-like body. It loves hacking digital stuff, such as radio protocols, access control systems, hardware and more. It's fully open-source and customizable, so you can extend it in whatever way you like | ||
| Awesome Flipper Zero | 1,586 | 10 days ago | A collection of Awesome resources for the Flipper Zero device |
| Yard Stick One | YARD Stick One (Yet Another Radio Dongle) can transmit or receive digital wireless signals at frequencies below 1 GHz. It uses the same radio circuit as the popular IM-Me. The radio functions that are possible by customizing IM-Me firmware are now at your fingertips when you attach YARD Stick One to a computer via USB | ||
| Proxmark | The Proxmark is an RFID swiss-army tool, allowing for both high and low level interactions with the vast majority of RFID tags and systems world-wide. Originally built by Jonathan Westhues over 10 years ago, the device has progressively evolved into the industry standard tool for RFID Analysis | ||
| ChameleonUltra | 973 | 3 months ago | The Chameleon Ultra is a pocket friendly powerful LF and HF emulation & manipulation tool which is based on the open-source project ChameleonMini. It can create perfect clones of various existing commercial smart cards, including cryptographic function and UID Changeable functions |
Awesome Embedded Security / Hardware Tools / Software Defined Radios | |||
| HackRF One | HackRF One from Great Scott Gadgets is a Software Defined Radio peripheral capable of transmission or reception of radio signals from 1 MHz to 6 GHz. Designed to enable test and development of modern and next generation radio technologies, HackRF One is an open source hardware platform that can be used as a USB peripheral or programmed for stand-alone operation | ||
| ADALM-PLUTO (PlutoSDR) | The easy to use ADALM-PLUTO active learning module (PlutoSDR) helps introduce electrical engineering students to the fundamentals of software-defined radio (SDR), radio frequency (RF), and wireless communications. Designed for students at all levels and from all backgrounds, the module can be used for both instructor-led and self-directed learning to help students develop a foundation in real-world RF and communications that they can build on as they pursue science, technology, or engineering degrees | ||
| RTL-SDR | RTL-SDR is a very cheap ~$30 USB dongle that can be used as a computer based radio scanner for receiving live radio signals in your area (no internet required). Depending on the particular model it could receive frequencies from 500 kHz up to 1.75 GHz. Most software for the RTL-SDR is also community developed, and provided free of charge. Note that RTL-SDRs cannot transmit | ||
Awesome Embedded Security / Hardware Tools / Software Defined Radio Software | |||
| Future SDR | FutureSDR supports Blocks with synchronous or asynchronous implementations for stream-based or message-based data processing. Blocks can be combined to a Flowgraph and launched on a Runtime that is driven by a Scheduler | ||
| Maia SDR | An open-source FPGA-based SDR project focusing on the ADALM Pluto | ||
Awesome Embedded Security / Hardware Tools / Wifi Tools | |||
| Pwnagotchi | Pwnagotchi is an A2C-based “AI” powered by bettercap and running on a Raspberry Pi Zero W that learns from its surrounding WiFi environment in order to maximize the crackable WPA key material it captures (either through passive sniffing or by performing deauthentication and association attacks). This material is collected on disk as PCAP files containing any form of handshake supported by hashcat, including full and half WPA handshakes as well as PMKIDs | ||
| ESP32Maurauder | 6,178 | 9 days ago | A suite of WiFi/Bluetooth offensive and defensive tools for the ESP32 |
Awesome Embedded Security / Further Learning and Training | |||
| Embeddedsecurity.io | We aim to provide a beginners resource on embedded systems security | ||
| SecuringHardware.com | Training by the legendary Joe Fitz | ||
| GrandIdeaStudio.com | Hardware hacking training with Joe Grand (aka Kingpin) | ||
Awesome Embedded Security / Further Learning and Training / Fault Injection and Side Channel Attacks | |||
| synacktiv - Blog | A how-to on voltage fault injection | ||
| raelize.com - Blog | Great insight into hardware hacking such as fault injection and side-channel attacks | ||
| riscure.com - Blog | One of the OG companies working on fault injection. Jasper van Woudenberg (Riscure) and Colin O'Flynn (Newae) literally on hardware hacking | ||
Awesome Embedded Security / Open Source Intelligence (OSINT) | |||
| Awesome OSINT | 19,231 | 8 days ago | |
Awesome Embedded Security / Other Awesome Lists / General Security | |||
| Application Security | 6,353 | 5 months ago | |
| Android Security | 8,234 | 3 months ago | |
| Capture the Flag | 9,904 | 4 months ago | |
| Hacking | 13,244 | 6 months ago | |
| Honeypots | 8,707 | 4 months ago | |
| Incident Response | 7,699 | 5 months ago | |
| Malware Analysis | 12,029 | 6 months ago | |
| Security | 12,514 | 4 months ago | |
| Fuzzing | 848 | about 1 year ago | |
Awesome Embedded Security / Other Awesome Lists / Embedded | |||
| General Embedded | 6,116 | about 14 hours ago | |
| Embedded and IoT Security | 1,839 | about 1 year ago | |
Awesome Embedded Security / Other Awesome Lists / Domain Specific / Automotive | |||
| CANbus | 2,238 | 2 months ago | |
| CANb IDs | 603 | 2 months ago | |
Awesome Embedded Security / Other Awesome Lists / Meta | |||
| awesome | 335,795 | 5 days ago | |
| lists | 10,038 | 2 months ago | |
jnv/listsMore related projects:
-
hrishikesh7665/android-pentesting-checklist
-
firmadyne/firmadyne
-
tanprathan/mobileapp-pentest-cheatsheet
-
lprat/static_file_analysis
-
icsharpcode/avalonedit
-
h3nnn4n/reverse-engineering-the-gameboy-tetris
-
powershell/powershell
-
jantari/powerfetch
-
as0ler/r2flutch
-
petoolse/petools
-
aliucord/aliucord
-
julianhayward/azure-mg-sub-governance-reporting
-
microsoft/inshellisense
-