Claude Skill
BrownFineSecurity/iothackbot
IoT HackBot provides Claude Skills and custom Python tooling for hybrid IoT penetration testing. Assess security of connected devices with this specialized collection.
Overview
Repository
Install this Skill
pip install colorama pyserial pexpect requestsRegistry
pip install colorama pyserial pexpect requestsgit clone https://github.com/BrownFineSecurity/iothackbot.git
Summary
IoT HackBot is a Python-based repository providing a collection of Claude Skills and custom tooling designed for hybrid IoT penetration testing, enabling security assessments of connected devices.
IoT HackBot:一套用于混合物联网渗透测试的Claude Skill集合与定制工具集
Key features
- Collection of Claude Skills for IoT security
- Custom tooling for penetration testing
- Hybrid testing approach for IoT devices
- Python-based implementation
Use cases
- Security assessment of IoT devices
- Hybrid penetration testing workflows
- Automating IoT security checks
- Educational resource for IoT pentesting
README excerpt
# IoTHackBot Open-source IoT security testing toolkit with integrated Claude Code skills for automated vulnerability discovery. ## Overview IoTHackBot is a collection of specialized tools and Claude Code skills designed for security testing of IoT devices, IP cameras, and embedded systems. It provides both command-line tools and AI-assisted workflows for comprehensive IoT security assessments. ## Tools Included ### Network Discovery & Reconnaissance - **wsdiscovery** - WS-Discovery protocol scanner for discovering ONVIF cameras and IoT devices - **iotnet** - IoT network traffic analyzer for detecting protocols and vulnerabilities - **netflows** - Network flow extractor with DNS hostname resolution from pcap files - **nmap** (skill) - Professional network reconnaissance with two-phase scanning strategy ### Device-Specific Testing - **onvifscan** - ONVIF device security scanner - Authentication bypass testing - Credential brute-forcing ### Firmware & File Analysis - **chipsec** (skill) - UEFI/BIOS firmware static analysis - Detect known rootkits (LoJax, ThinkPwn, HackingTeam) - Generate EFI executable inventories with hashes - Decode firmware structure and extract NVRAM - **ffind** - Advanced file finder with type detection and filesystem extraction - Identifies artifact file types - Extracts ext2/3/4 and F2FS filesystems - Designed for firmware analysis ### Android Analysis - **apktool** (skill) - APK unpacking and resource extraction - Decode AndroidManifest.xml - Extract resources, layouts, strings - Disassemble to smali code - **jadx** (skill) - APK decompilation - Convert DEX to readable Java source - Search for hardcoded credentials - Analyze app logic ### Hardware & Console Access - **jtagprobe** - SWD/JTAG debug interfac
Topics
No topics yet.