awesome-embedded-security

Active learning module (PlutoSDR) used to explore software-defined radio, RF experimentation, and wireless communications.

A collection of Awesome resources for the Flipper Zero device.

Powerful open-source ESP32 firmware designed for offensive security and Red Team operations.

Open source hacker multi-tool that talks to electronic stuff. It's got a bunch of features an intrepid hacker might need to prototype their next project.

Pocket friendly powerful LF and HF emulation & manipulation tool which is based on the open-source project ChameleonMini.

Platform security assessment framework with firmware and chipset checks relevant to offline dump triage.

A coverage-guided fuzzer with enhanced mutations, QEMU and Unicorn emulation modes, and custom power schedules.

AMD guidance and security bulletin coverage related to firmware TPM behavior on supported platforms.

Secure Encrypted Virtualization for encrypting VM memory with AMD-V hardware assistance.

Platform-agnostic binary analysis framework. Brought to you by the Computer Security Lab at UC Santa Barbara, SEFCOM at Arizona State University, their associated CTF team, Shellphish, the open source community, and @rhelmot.

Multi-architecture binary analysis toolkit, with the capability to perform dynamic symbolic execution (like Mayhem, KLEE, etc.) and various static analyses on binaries. If you'd like to learn how to use it, you're in the right place!

Statically extracts arguments to SVC calls and HAL functions from stripped ARM Cortex-M BLE firmware without symbol tables, enabling security audits of Nordic and similar binaries. ACSAC 2021.

Damn Vulnerable IoT Device: open hardware ATmega328p board (Gerbers published) purpose-built for practicing UART extraction, firmware dumping, and Bluetooth sniffing attacks on physical hardware.

Damn Vulnerable Router Firmware: modified Linksys firmware containing intentional MIPS/ARM binary exploitation challenges (buffer overflows, format strings, heap bugs) runnable under QEMU without physical hardware.

Beginners resource on embedded systems security.

Paid hardware hacking training with Joe Grand (aka Kingpin).

Actively maintained hardware and IoT pentesting wiki by swisskyrepo covering fault injection, JTAG/SWD/UART exploitation, firmware dumping, side-channel attacks, and RF attacks with practical tooling references.

Browser-based embedded security CTF presenting a series of challenges on a fictional MSP430-based lock system, covering stack overflows through advanced memory corruption exploitation.