awesome-vehicle-security
github.com/eric-erki/awesome-vehicle-security ↗A curated list of resources for learning about vehicle security and car hacking.
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me episodes resources from awesome-vehicle-security"
Installation instructions →What's inside
Books
- 2014 Car Hacker's Handbook
Free guide to hacking vehicles from 2014. You can also buy the book on Amazon
- 2016 Car Hacker's Handbook
Latest version of the Car Hacker's handbook with updated information to hack your own vehicle and learning vehicle security. For a physical copy as well unlimited PDF, MOBI, and EPUB copies of the book, buy it at
- A Comprehensible Guide to Controller Area Network
An older book from 2005, but still a comprehensive guide on CAN buses and networking in vehicles.
- Controller Area Network Prototyping with Arduino
This book guides you through prototyping CAN applications on Arduinos, which can help when working with CAN on your own car.
- Embedded Networking with CAN and CANopen
From 2003, this book fills in gaps in CAN literature and will educate you further on CAN networks and working with embedded systems.
- Inside Radio: An Attack and Defense Guide
Research Papers
- 5-Star Automotive Cyber Safety Framework, 2015
- A Car Hacking Experiment: When Connectivity Meets Vulnerability
- Advanced CAN Message Injection, 2016
- Adventures in Automotive Networks and Control Units (aka car hacking)
- A Survey of Remote Automotive Attack Surfaces, 2014
- Automobile Driver Fingerprinting, 2016
Presentations
- Adventures in Automotive Networks and Control Units
DEFCON 21 talk by Chris Valasek and Charlie Miller on automotive networks.
- A Platform base on Visualization for Protecting CAN Bus Security
Syscan360 2016 SH talk by Jianhao Liu
- A Survey of Remote Automotive Attack Surfaces
Black Hat talk By Charlie Miller and Chris Valasek. Automotive security concerns have gone from the fringe to the mainstream with security researchers showing the susceptibility of the modern vehicle to local and remote attacks. Discussion of vehicle attack surfaces. 2014.
- Can You Trust Autonomous Vehicles?
DEFCON 24 talk by Jianhao Liu, Chen Yan, Wenyuan Xu
- Car Hacking 101
Bugcrowd LevelUp 2017 by Alan Mond
- Car Hacking Videos
A web page with a long list of videos (40+) that are available online related to the topic of car hacking. From a 2007 DEF CON talk on modding engine ECUS and onwards (e.g. the 2017 Keen Security Tesla hack).
Articles
- Analysis of an old Subaru Impreza - Subaru Select Monitor v1 (SSM1)
Digging into an old ECU through an old protocol and disabling a 1997 Subaru Impreza's speed limiter.
- Anatomy of the Rolljam Wireless Car Hack
Overview of the RollJam rolling code exploitation device.
- Car Hacking in 30 Minutes or Less
Using VirtualBox and Kali Linux, you can start car hacking using completely free open-source software and tools, including can-utils, ICSim, ScanTool, Wireshark, and tcpdump
- Car Hacking on the cheap
Craig Smith wrote a brief article on working with Metasploit’s HWBrige using ELM327 Bluetooth dongle
- Car Hacking on the Cheap
A whitepaper from Chris Valasek and IOActive on hacking your car when you don't have a lot of resources at your disposal.
- Developments in Car Hacking
via the SANS Reading Room, Currie's paper analyses the risks and perils of smart vehicle technology.
Coordinated disclosure
- Android Security
- Application Security
- awesome
- Capture the Flag
- Fiat Chrysler Automobiles
Coordinated disclosure submissions accepted, paid bounties offered
- General Motors
Coordinated disclosure submissions accepted
Miscellaneous
- Arduino
No matter which shield is selected you will need your own sniffer. This is implementation of standard Lawicel/SLCAN protocol for Arduino + any MCP CAN Shield to use with many standard CAN bus analysis software packages or SocketCAN
- arduino-canbus-monitor
No matter which shield is selected you will need your own sniffer. This is implementation of standard Lawicel/SLCAN protocol for Arduino + any MCP CAN Shield to use with many standard CAN bus analysis software packages or SocketCAN
- CANBadger
A tool for reverse-engineering and testing automotive systems. The CANBadger consists of both hardware and software. The main interface is a LPC1768/LPC1769 processor mounted on a custom PCB, which offers two CAN interfaces, SD Card, a blinky LED, some GPIO pins, power supply for peripherals and the ethernet port.
- CANBus Triple
General purpose Controller Area Network swiss army knife and development platform.
- CANdiy-Shield
- CANSPY
A platform giving security auditors to audit CAN devices. It can be used to block, forward or modify CAN frames on the fly autonomously as well as interactively.
Podcasts and Episodes
- Big Bugs Podcast Episode 1: Auto Bugs - Critical Vulns found in Cars with Jason HaddixEpisodes
Jason Haddix explores major vulnerabilities found in cars.
- Car Hacking with Craig SmithEpisodes
Software Engineering Daily did an amazing episode with Craig Smith, author of the Car Hacking Handbook (above), on hacking into vehicles.
- Hackable? - Cars are ComputersEpisodes
Geoff Siskind paired up with Craig Smith, author of The Car Hacker’s Handbook, to show us just how easy – or not – it is to hack a car.
- Hacking Connected Vehicles with Chris Valasek of IOActiveEpisodes
Chris Valasek talks about hacking into connected vehicles.
- Hacking Under the Hood and Into Your CarEpisodes
Chris Valasek and Charlie Miller discuss with NPR how they were able to hack into vehicles.
- SANS Internet Storm CenterPodcasts
the ISC run a regular podcast going into the latest vulnerabilities and security news.
Applications
- BUSMASTER
- CANalyzat0r
A security analysis toolkit for proprietary car protocols.
- CANToolz
CANToolz is a framework for analysing CAN networks and devices. It is based on several modules which can be assembled in a pipeline.
- Intrepid Tools
Expensive, but extremely versatile tools specifically designed for reversing CAN and other vehicle communication protocols.
- Kayak
Java application for CAN bus diagnosis and monitoring.
- Mazda AIO Tweaks
All-in-one installer/uninstaller for many available Mazda MZD Infotainment System tweaks.
Showing a sample of 169 resources. View the full list on GitHub →