IoT_Security_CheckList.pdf
401.3 KB
IoT Security Checklist
The checklist lists 39 essential security functions that enable IoT devices to be operated safely even in an environment where threats exist, along with background information on why they are necessary
IoT Security Checklist Diagram, Users Manual, Checklist in .xlsx:
https://www.jpcert.or.jp/english/pub/sr/IoT-SecurityCheckList.html
#IoT
@Iotpenetrationtesting
The checklist lists 39 essential security functions that enable IoT devices to be operated safely even in an environment where threats exist, along with background information on why they are necessary
IoT Security Checklist Diagram, Users Manual, Checklist in .xlsx:
https://www.jpcert.or.jp/english/pub/sr/IoT-SecurityCheckList.html
#IoT
@Iotpenetrationtesting
To some admins to post IoT & ICS Hacking posts on the channel to share with other friends and if possible to offer conferences.
Contact : @NetPwn
Contact : @NetPwn
+ A Collection for IoT Security Resources
https://github.com/V33RU/IoTSecurity101#Books-For-IoT-Pentesting
+ A Virtual environment for Pentesting IoT Devices
https://github.com/IoT-PTv/IoT-PT
#IoT #Pentest
@Iotpenetrationtesting
https://github.com/V33RU/IoTSecurity101#Books-For-IoT-Pentesting
+ A Virtual environment for Pentesting IoT Devices
https://github.com/IoT-PTv/IoT-PT
#IoT #Pentest
@Iotpenetrationtesting
GitHub
GitHub - V33RU/awesome-connected-things-sec: A Curated list of Security Resources for all connected things
A Curated list of Security Resources for all connected things - V33RU/awesome-connected-things-sec
🔥🔥🔥Xiongmai IoT Exploitation(exploited in the wild)
There are a number of reasons Xiongmai devices are interesting targets:
💾 The first reason is there are a lot of them on the internet(around 200,000).
💾The second reason is these devices have been affected by a handful of high or critical vulnerabilities(CVE-2017-7577, CVE-2018-10088, CVE-2020-22253, CVE-2021-41506, CVE-2022-26259, CVE-2022-45045 & CVE-2022-45640)
💾And that’s interesting due to an almost complete lack of high quality exploits for these vulnerabilities.
#IOT
#PrivateShizo
@Iotpenetrationtesting
There are a number of reasons Xiongmai devices are interesting targets:
💾 The first reason is there are a lot of them on the internet(around 200,000).
💾The second reason is these devices have been affected by a handful of high or critical vulnerabilities(CVE-2017-7577, CVE-2018-10088, CVE-2020-22253, CVE-2021-41506, CVE-2022-26259, CVE-2022-45045 & CVE-2022-45640)
💾And that’s interesting due to an almost complete lack of high quality exploits for these vulnerabilities.
#IOT
#PrivateShizo
@Iotpenetrationtesting
VulnCheck
VulnCheck - Outpace Adversaries
Vulnerability intelligence that predicts avenues of attack with speed and accuracy.
ShellCore.pdf
729.6 KB
"ShellCore: Automating Malicious IoT Software Detection by Using Shell Commands Representation", 2021.
#IoT_Security
@Iotpenetrationtesting
#IoT_Security
@Iotpenetrationtesting
Gafgyt.pdf
4.3 MB
A Detailed Analysis of the Gafgyt Malware Targeting IoT Devices , 2022.
#Malware_analysis
#IoT_Security
@Iotpenetrationtesting
#Malware_analysis
#IoT_Security
@Iotpenetrationtesting
awesome-iot-hacks
A Collection of Hacks in IoT Space so that we can address them (hopefully).
https://github.com/nebgnahz/awesome-iot-hacks
#IoT
@Iotpenetrationtesting
A Collection of Hacks in IoT Space so that we can address them (hopefully).
https://github.com/nebgnahz/awesome-iot-hacks
#IoT
@Iotpenetrationtesting
GitHub
GitHub - nebgnahz/awesome-iot-hacks: A Collection of Hacks in IoT Space so that we can address them (hopefully).
A Collection of Hacks in IoT Space so that we can address them (hopefully). - nebgnahz/awesome-iot-hacks
A tool which utilizes Shodan to detect vulnerable IoT devices.
BAMF is an open-source tool designed to leverage Shodan (a search engine for the Internet of Things) to discover routers vulnerable to CVE-2013-6026, commonly known as Joel's Backdoor, a severe vulnerability allowing unauthenticated access to the administration panel of many routers made by D-Link, one of the world's largest manufacturers of routers for home and business.
https://github.com/malwaredllc/bamf
#IoT
@Iotpenetrationtesting
BAMF is an open-source tool designed to leverage Shodan (a search engine for the Internet of Things) to discover routers vulnerable to CVE-2013-6026, commonly known as Joel's Backdoor, a severe vulnerability allowing unauthenticated access to the administration panel of many routers made by D-Link, one of the world's largest manufacturers of routers for home and business.
https://github.com/malwaredllc/bamf
#IoT
@Iotpenetrationtesting
IoTSecurity101
A Curated list of #IoT Security Resources
https://github.com/V33RU/IoTSecurity101
@Iotpenetrationtesting
A Curated list of #IoT Security Resources
https://github.com/V33RU/IoTSecurity101
@Iotpenetrationtesting
GitHub
GitHub - V33RU/awesome-connected-things-sec: A Curated list of Security Resources for all connected things
A Curated list of Security Resources for all connected things - V33RU/awesome-connected-things-sec
IoT-PT
A Virtual environment for Pentesting IoT Devices
https://github.com/IoT-PTv/IoT-PT
Persian :
یک محیط مجازی برای Pentesting دستگاه های IoT
https://github.com/IoT-PTv/IoT-PT
#IoT
@Iotpenetrationtesting
A Virtual environment for Pentesting IoT Devices
https://github.com/IoT-PTv/IoT-PT
Persian :
یک محیط مجازی برای Pentesting دستگاه های IoT
https://github.com/IoT-PTv/IoT-PT
#IoT
@Iotpenetrationtesting
GitHub
GitHub - IoT-PTv/IoT-PT-v1: A Virtual environment for Pentesting IoT Devices
A Virtual environment for Pentesting IoT Devices. Contribute to IoT-PTv/IoT-PT-v1 development by creating an account on GitHub.
درود
بدلیل مشغله کاری از تمامی دوستان فعال در حوزه های سایبری دعوت میشود به آیدی زیر پیام داده و در صورت تایید به عنوان مدیر و ویراستار جدید کانال انتخاب شوند
@Offensive01Bot
بدلیل مشغله کاری از تمامی دوستان فعال در حوزه های سایبری دعوت میشود به آیدی زیر پیام داده و در صورت تایید به عنوان مدیر و ویراستار جدید کانال انتخاب شوند
@Offensive01Bot