Claude Skill

BrownFineSecurity/iothackbot

IoT HackBot provides Claude Skills and custom Python tooling for hybrid IoT penetration testing. Assess security of connected devices with this specialized collection.

Overview

Stars796
Forks121
LanguagePython
Last pushed2026-06-01
Last synced2026-07-03
View on GitHub

Repository

OwnerBrownFineSecurity
Repositoryiothackbot
Full nameBrownFineSecurity/iothackbot
Repo ID1,098,348,050

Install this Skill

pip install colorama pyserial pexpect requests

Registry

Typeworkflow
Quality score70/100
Verificationreadme_parsed
Last verified2026-06-06
Platforms
Claude
Capabilities
pdfmemorysearchterminalworkflow
Detected files
README.md
Install methods
  • pip install colorama pyserial pexpect requests
  • git clone https://github.com/BrownFineSecurity/iothackbot.git

Summary

IoT HackBot is a Python-based repository providing a collection of Claude Skills and custom tooling designed for hybrid IoT penetration testing, enabling security assessments of connected devices.

Chinese description

IoT HackBot:一套用于混合物联网渗透测试的Claude Skill集合与定制工具集

Key features

  • Collection of Claude Skills for IoT security
  • Custom tooling for penetration testing
  • Hybrid testing approach for IoT devices
  • Python-based implementation

Use cases

  • Security assessment of IoT devices
  • Hybrid penetration testing workflows
  • Automating IoT security checks
  • Educational resource for IoT pentesting

README excerpt

# IoTHackBot Open-source IoT security testing toolkit with integrated Claude Code skills for automated vulnerability discovery. ## Overview IoTHackBot is a collection of specialized tools and Claude Code skills designed for security testing of IoT devices, IP cameras, and embedded systems. It provides both command-line tools and AI-assisted workflows for comprehensive IoT security assessments. ## Tools Included ### Network Discovery & Reconnaissance - **wsdiscovery** - WS-Discovery protocol scanner for discovering ONVIF cameras and IoT devices - **iotnet** - IoT network traffic analyzer for detecting protocols and vulnerabilities - **netflows** - Network flow extractor with DNS hostname resolution from pcap files - **nmap** (skill) - Professional network reconnaissance with two-phase scanning strategy ### Device-Specific Testing - **onvifscan** - ONVIF device security scanner - Authentication bypass testing - Credential brute-forcing ### Firmware & File Analysis - **chipsec** (skill) - UEFI/BIOS firmware static analysis - Detect known rootkits (LoJax, ThinkPwn, HackingTeam) - Generate EFI executable inventories with hashes - Decode firmware structure and extract NVRAM - **ffind** - Advanced file finder with type detection and filesystem extraction - Identifies artifact file types - Extracts ext2/3/4 and F2FS filesystems - Designed for firmware analysis ### Android Analysis - **apktool** (skill) - APK unpacking and resource extraction - Decode AndroidManifest.xml - Extract resources, layouts, strings - Disassemble to smali code - **jadx** (skill) - APK decompilation - Convert DEX to readable Java source - Search for hardcoded credentials - Analyze app logic ### Hardware & Console Access - **jtagprobe** - SWD/JTAG debug interfac

Topics

No topics yet.

Explore more

Data from GitHub. Synced on 2026-07-03