awesome-embedded-and-iot-security
github.com/fkie-cad/awesome-embedded-and-iot-security ↗A curated list of awesome embedded and IoT security resources.
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me zigbee tools resources from awesome-embedded-and-iot-security"
Installation instructions →What's inside
Books
Research Papers
- A Large-Scale Analysis of the Security of Embedded Firmwares
- Analysis of embedded applications by evolutionary fuzzing
- Automated Dynamic Firmware Analysis at Scale: A Case Study on Embedded Web Interfaces
- Avatar: A Framework to Support Dynamic Security Analysis of Embedded Systems' Firmwares
- BenchIoT: A Security Benchmark for the Internet of Things
- Challenges in Designing Exploit Mitigations for Deeply Embedded Systems
Hardware Tools
- ApiMoteZigBee Tools
ZigBee security research hardware for learning about and evaluating the security of IEEE 802.15.4/ZigBee systems. Killerbee compatible.
- BladeRF 2.0SDR Tools
Software Defined Radio peripheral capable of transmission or reception of radio signals from 47 MHz to 6 GHz (full-duplex).
- Bluefruit LE SnifferBluetooth BLE Tools
Easy to use Bluetooth Low Energy sniffer.
- Bus Blaster
Detects and interacts with hardware debug ports like
- Bus Pirate
Detects and interacts with hardware debug ports like UART and JTAG.
- ChamaleonMiniRFID NFC Tools
Programmable, portable tool for NFC security analysis.
Websites
- AttifyBlogs
- Azeria LabTutorials and Technical Background
Miscellaneous ARM related Tutorials.
- Black Hills - Hardware Hacking tagBlogs
Hardware Hacking tag
- /dev/ttyS0's Embedded Device HackingBlogs
- ExploiteersBlogs
- Firmware SecurityBlogs
Case Studies
- Binary Hardening in IoT products
- Cracking Linksys “Encryption”
- Deadly Sins Of Development
Conference talk presenting several real world examples on real bad implementations :tv:.
- Dumping firmware from a device's SPI flash with a buspirate
- Hacking the DSP-W215, Again
- Hacking the PS4
Introduction to PS4's security.
Software Tools
- BinwalkAnalysis Tools
Searches a binary for "interesting" stuff, as well as extracts arbitrary files.
- CotopaxiMisc Tools
Set of tools for security testing of Internet of Things devices using specific network IoT protocols.
- cwe_checkerAnalysis Tools
Finds vulnerable patterns in binary executables - ELF support for x86, ARM, and MIPS, experimental bare-metal support.
- dumpflashMisc Tools
Low-level NAND Flash dump and parsing utility.
- embaAnalysis Tools
Analyze Linux-based firmware of embedded devices.
- EXPLIoTAnalysis Frameworks
Pentest framework like Metasploit but specialized for IoT.
Free Training
- CSAW Embedded Security Challenge 2019
CSAW 2019 Embedded Security Challenge (ESC).
- Embedded Security CTF
Microcorruption: Embedded Security CTF.
- Hardware Hacking 101
Workshop @ BSides Munich 2019.
- IoTGoat
IoTGoat is a deliberately insecure firmware based on OpenWrt.
- Rhme-2015
First riscure Hack me hardware CTF challenge.
- Rhme-2016
Riscure Hack me 2 is a low level hardware CTF challenge.
Conferences
Showing a sample of 130 resources. View the full list on GitHub →