IoTSecurity101
IoTSecurity101 copied to clipboard
0xff7
From IoT Pentesting to IoT Security
IoT Pentesting 101 && IoT security 101 
Approach Methodology
- Network
- Web (Front & Backend and Web services)
- Mobile App(Android & iOS)
- Wireless Connectivity
- Firmware Pentesting(Hardware or IoT device OS)
- Hardware Level Approach
Contents
Get In Touch With Other IoT Hackers
- https://t.me/iotsecurity1011
- https://www.iotvillage.org/
- https://www.ethicalhacker.net/groups/iot
Books
- Android Hacker's Handbook
- Hacking the Xbox
- Car hacker's handbook
- IoT Penetration Testing Cookbook
- Abusing the Internet of Things
- Hardware Hacking: Have Fun while Voiding your Warranty
- Linksys WRT54G Ultimate Hacking
- Linux Binary Analysis
- Firmware
Blogs for iotpentest
- http://iotpentest.com/
- https://blog.attify.com
- https://payatu.com/blog/
- http://jcjc-dev.com/
- https://w00tsec.blogspot.in/
- http://www.devttys0.com/
- https://www.rtl-sdr.com/
- https://keenlab.tencent.com/en/
- https://courk.cc/
- https://iotsecuritywiki.com/
- https://cybergibbons.com/
- http://firmware.re/
- https://www.securityevaluators.com/blog/
CTF For IoT's And Embeddded
- BLECTF: ESP32 based Bluetooth CTF
- Microcorruption CTF
- Riscure Embedded Hardware CTF 2016
- Riscure Embedded Hardware CTF 2017
- BTLEmystique: ESP32 vulnerable BLE programs
- Damn Vulnerable Router Firmware
- Damn Vulnerable ARM Router
YouTube Channels for Embedded hacking
IoT security vulnerabilites checking guides
Exploitation Tools & OS
- Expliot - IoT Exploitation framework - by Aseemjakhar
- AttifyOS - IoT Pentest OS - by Aditya Gupta
- Ubutnu Best Host Linux for IoT's - Use LTS
- A Small, Scalable Open Source RTOS for IoT Embedded Devices
- Skywave Linux- Software Defined Radio for Global Online Listening
- Routersploit (Exploitation Framework for Embedded Devices)
Reverse Enginnering Tools
Introduction
IoT Protocols Pentesting
MQTT
- Introduction
- Hacking the IoT with MQTT
- thoughts about using IoT MQTT for V2V and Connected Car from CES 2014
- Nmap
- The Seven Best MQTT Client Tools
- A Guide to MQTT by Hacking a Doorbell to send Push Notifications
CoAP
Automobile
CanBus
- Introduction and protocol Overview
- PENTESTING VEHICLES WITH CANTOOLZ
- Building a Car Hacking Development Workbench: Part1
- CANToolz - Black-box CAN network analysis framework
Radio IoT Protocols Overview
- Understanding Radio
- Signal Processing
- Software Defined Radio
- Gnuradio
- Creating a flow graph
- Analysing radio signals
- Recording specific radio signal
- Replay Attacks
Base transceiver station (BTS)
GSM & SS7 Pentesting
- Introduction to GSM Security
- GSM Security 2
- vulnerabilities in GSM security with USRP B200
- Security Testing 4G (LTE) Networks
- Case Study of SS7/SIGTRAN Assessment
- Telecom Signaling Exploitation Framework - SS7, GTP, Diameter & SIP
- ss7MAPer – A SS7 pen testing toolkit
- Introduction to SIGTRAN and SIGTRAN Licensing
- SS7 Network Architecture
- Introduction to SS7 Signaling
Zigbee & Zwave
- Introduction and protocol Overview
- Hacking Zigbee Devices with Attify Zigbee Framework
- Hands-on with RZUSBstick
- ZigBee & Z-Wave Security Brief
BLE
- Traffic Engineering in a Bluetooth Piconet
- BLE Characteristics Reconnaissance (Active and Passive) with HCI Tools
Mobile security (Android & iOS)
ARM
Firmware Pentest
IoT hardware Overview
Hardware Gadgets to pentest
- Bus Pirate
- EEPROM readers
- Jtagulator / Jtagenum
- Logic Analyzer
- The Shikra
- FaceDancer21 (USB Emulator/USB Fuzzer)
- RfCat
- IoT Exploitation Learning Kit
- Hak5Gear- Hak5FieldKits
- Ultra-Mini Bluetooth CSR 4.0 USB Dongle Adapter
- Attify Badge - UART, JTAG, SPI, I2C (w/ headers)
Attacking Hardware Interfaces
UART
- Identifying UART interface
- onewire-over-uart
- Accessing sensor via UART
- Rooting an IP Phone using UART
0xff7