emba by e-m-b-a

EMBA - The firmware security analyzer

updated at Oct. 27, 2024, 7:32 a.m.

44 +0

2,657 +19

232 +3

flashrom by flashrom

Send patches to https://review.coreboot.org: https://www.flashrom.org/Development_Guidelines#GitHub

updated at Oct. 27, 2024, 7:18 a.m.

57 +0

883 +4

450 +1

binwalk by ReFirmLabs

Firmware Analysis Tool

updated at Oct. 27, 2024, 2:36 a.m.

361 +0

11,029 +64

1,550 +3

trommel by CERTCC

TROMMEL: Sift Through Embedded Device Files to Identify Potential Vulnerable Indicators

updated at Oct. 26, 2024, 4:49 p.m.

19 +0

207 +1

47 +0

glasgow by GlasgowEmbedded

Scots Army Knife for electronics

updated at Oct. 26, 2024, 12:01 p.m.

66 +1

1,914 +5

183 +1

radare2 by radareorg

UNIX-like reverse engineering framework and command-line toolset

updated at Oct. 26, 2024, noon

487 +0

20,615 +37

2,996 +3

routersploit by threat9

Exploitation Framework for Embedded Devices

updated at Oct. 26, 2024, 6:12 a.m.

618 -1

12,175 +11

2,314 -2

hal by emsec

HAL – The Hardware Analyzer

updated at Oct. 26, 2024, 1:23 a.m.

26 +0

623 -1

76 +0

Firmware_Slap by ChrisTheCoolHut

Discovering vulnerabilities in firmware through concolic analysis and function clustering.

updated at Oct. 25, 2024, 7:13 p.m.

13 +0

469 +1

79 +0

firmadyne by firmadyne

Platform for emulation and dynamic analysis of Linux-based firmware

updated at Oct. 25, 2024, 7 p.m.

74 +0

1,819 +2

346 +0

PRET by RUB-NDS

Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.

updated at Oct. 25, 2024, 4:27 p.m.

197 +0

3,912 +5

607 +0

cwe_checker by fkie-cad

cwe_checker finds vulnerable patterns in binary executables

updated at Oct. 25, 2024, 12:55 a.m.

28 +0

1,117 +5

117 +0

IoTGoat by scriptingxss

IoTGoat is a deliberately insecure firmware based on OpenWrt.

updated at Oct. 24, 2024, 10:53 a.m.

22 +0

179 +1

42 +0

firmwalker by craigz28

Script for searching the extracted firmware file system for goodies!

updated at Oct. 23, 2024, 6:24 p.m.

43 +0

1,049 +3

185 -1

HomePWN by Telefonica

HomePwn - Swiss Army Knife for Pentesting of IoT Devices

updated at Oct. 23, 2024, 3:31 a.m.

36 +0

874 +1

134 +0

JTAGenum by cyphunk

Given an Arduino compatible microcontroller or Raspberry PI (experimental), JTAGenum scans pins[] for basic JTAG functionality and can be used to enumerate the Instruction Register for undocumented instructions. Props to JTAG scanner and Arduinull which came before JTAGenum and forwhich much of the code and logic is based on. Feel free to branch and modify religiously (readme, credits, whatever)

updated at Oct. 22, 2024, 7 p.m.

43 +1

721 +1

103 +0

fact_extractor by fkie-cad

Standalone Utility for FACT-like extraction

updated at Oct. 21, 2024, 11:57 a.m.

13 +0

82 +1

31 -1

killerbee by riverloopsec

IEEE 802.15.4/ZigBee Security Research Toolkit

updated at Oct. 16, 2024, 6:59 p.m.

47 +0

758 +0

215 +0

dumpflash by ohjeongwook

Low-level NAND Flash dump and parsing utility

updated at Oct. 13, 2024, 7:41 p.m.

30 +0

288 +0

102 +1

fwanalyzer by cruise-automation

a tool to analyze filesystem images for security

updated at Oct. 6, 2024, 6:49 a.m.

26 +0

489 +0

77 +0