PentestHardware by unprovable

Kinda useful notes collated together publicly

updated at Jan. 15, 2024, 10:53 a.m.

69 +0

488 +0

84 +0

Rhme-2017 by Riscure

Riscure Hack Me embedded hardware CTF 2017-2018.

updated at Feb. 7, 2024, 10:13 p.m.

8 +0

83 +0

14 +0

trommel by CERTCC

TROMMEL: Sift Through Embedded Device Files to Identify Potential Vulnerable Indicators

updated at Feb. 24, 2024, 5:17 a.m.

20 +0

200 +0

47 +0

csaw_esc_2019 by TrustworthyComputing

CSAW Embedded Security Challenge 2019

updated at Feb. 25, 2024, 4:17 a.m.

11 +0

34 +0

5 +0

RHme-2015 by Riscure

RHme+ 2015 challenge

updated at March 28, 2024, 1:01 p.m.

11 +0

106 +0

15 +0

Firmware_Slap by ChrisTheCoolHut

Discovering vulnerabilities in firmware through concolic analysis and function clustering.

updated at April 2, 2024, 5:40 p.m.

13 +0

463 +0

79 +0

samsung-firmware-magic by chrivers

Tool for decrypting the firmware files for Samsung SSDs

updated at April 18, 2024, 8:33 p.m.

10 +0

200 +0

23 +0

IoTGoat by scriptingxss

IoTGoat is a deliberately insecure firmware based on OpenWrt.

updated at April 19, 2024, 1:40 p.m.

23 +0

178 +0

42 +0

dumpflash by ohjeongwook

Low-level NAND Flash dump and parsing utility

updated at April 21, 2024, 1:25 p.m.

29 +0

281 +0

102 +0

fwanalyzer by cruise-automation

a tool to analyze filesystem images for security

updated at April 24, 2024, 3:31 p.m.

26 +0

481 +0

75 +0

Rhme-2016 by Riscure

Rhme2 challenge (2016)

updated at April 28, 2024, 4:29 p.m.

18 +0

290 +0

50 +0

fact_extractor by fkie-cad

Standalone Utility for FACT-like extraction

updated at April 29, 2024, 9:16 a.m.

13 +0

77 +0

31 +0

killerbee by riverloopsec

IEEE 802.15.4/ZigBee Security Research Toolkit

updated at May 4, 2024, 8:24 a.m.

47 +0

736 +0

215 +0

firmadyne by firmadyne

Platform for emulation and dynamic analysis of Linux-based firmware

updated at May 4, 2024, 10:59 a.m.

73 +0

1,765 +0

337 +0

firmwalker by craigz28

Script for searching the extracted firmware file system for goodies!

updated at May 9, 2024, 3:06 a.m.

43 +0

989 +1

181 +0

HomePWN by Telefonica

HomePwn - Swiss Army Knife for Pentesting of IoT Devices

updated at May 9, 2024, 5:19 p.m.

36 +0

828 +2

136 +0

cotopaxi by Samsung

Set of tools for security testing of Internet of Things devices using specific network IoT protocols

updated at May 9, 2024, 5:37 p.m.

15 +0

344 +1

78 +0

JTAGenum by cyphunk

Given an Arduino compatible microcontroller or Raspberry PI (experimental), JTAGenum scans pins[] for basic JTAG functionality and can be used to enumerate the Instruction Register for undocumented instructions. Props to JTAG scanner and Arduinull which came before JTAGenum and forwhich much of the code and logic is based on. Feel free to branch and modify religiously (readme, credits, whatever)

updated at May 9, 2024, 9:12 p.m.

40 +0

664 +3

98 +0

glasgow by GlasgowEmbedded

Scots Army Knife for electronics

updated at May 10, 2024, 1:40 p.m.

65 +0

1,862 +2

160 +3

flashrom by flashrom

Send patches to https://review.coreboot.org: https://www.flashrom.org/Development_Guidelines#GitHub

updated at May 11, 2024, 8:17 a.m.

59 +1

801 +1

426 +0