The Firmware Security Testing Methodology (FSTM) is composed of nine stages tailored to enable security researchers, software developers, consultants, and Information Security professionals with conducting firmware security assessments.
☆443Oct 5, 2025Updated 5 months ago
Alternatives and similar repositories for owasp-fstm
Users that are interested in owasp-fstm are comparing it to the libraries listed below
Sorting:
- EmbedOS - Embedded security testing virtual machine☆161Oct 21, 2020Updated 5 years ago
- IoTGoat is a deliberately insecure firmware created to educate software developers and security professionals with testing commonly foun…☆867Oct 5, 2025Updated 5 months ago
- OWASP IoT Security Verification Standard (ISVS)☆148Oct 6, 2025Updated 4 months ago
- Firmware Analysis and Comparison Tool☆1,423Updated this week
- Toolkit to emulate firmware and analyse it for security vulnerabilities☆1,534Sep 16, 2024Updated last year
- EMBArk - The firmware security scanning environment☆374Jan 16, 2026Updated last month
- Script for searching the extracted firmware file system for goodies!☆1,191Aug 29, 2023Updated 2 years ago
- IoTGoat is a deliberately insecure firmware based on OpenWrt.☆185Mar 29, 2020Updated 5 years ago
- EMBA - The firmware security analyzer☆3,371Feb 26, 2026Updated last week
- A Curated list of Security Resources for all connected things☆3,204Feb 20, 2026Updated 2 weeks ago
- A Virtual environment for Pentesting IoT Devices☆443Aug 25, 2025Updated 6 months ago
- Platform for emulation and dynamic analysis of Linux-based firmware☆2,047Jul 21, 2024Updated last year
- The Damn Vulnerable Router Firmware Project☆710Apr 7, 2021Updated 4 years ago
- Towards Large-Scale Emulation of IoT Firmware for Dynamic Analysis☆835Dec 25, 2025Updated 2 months ago
- EMUX Firmware Emulation Framework (formerly ARMX)☆843Aug 22, 2025Updated 6 months ago
- A curated list of awesome embedded and IoT security resources.☆2,234Oct 17, 2023Updated 2 years ago
- cwe_checker finds vulnerable patterns in binary executables☆1,324Apr 10, 2025Updated 10 months ago
- Attify OS - Distro for pentesting IoT devices☆1,020Aug 26, 2021Updated 4 years ago
- Discovering vulnerabilities in firmware through concolic analysis and function clustering.☆479Sep 17, 2020Updated 5 years ago
- HomePwn - Swiss Army Knife for Pentesting of IoT Devices☆926Dec 27, 2022Updated 3 years ago
- The IoT Security Testing Guide (ISTG) provides a comprehensive methodology for penetration tests in the IoT field, offering flexibility t…☆114Jul 29, 2025Updated 7 months ago
- Automatically exported from code.google.com/p/firmware-mod-kit☆965Feb 17, 2026Updated 2 weeks ago
- FIRM-AFL is the first high-throughput greybox fuzzer for IoT firmware.☆457Mar 22, 2024Updated last year
- Karonte is a static analysis tool to detect multi-binary vulnerabilities in embedded firmware☆423Sep 18, 2021Updated 4 years ago
- Set of tools for security testing of Internet of Things devices using specific network IoT protocols☆358May 31, 2024Updated last year
- A fork and successor of the Sulley Fuzzing Framework☆2,316Feb 15, 2026Updated 2 weeks ago
- Damn Vulnerable IoT Device☆218Feb 12, 2024Updated 2 years ago
- a tool to analyze filesystem images for security☆512Oct 8, 2023Updated 2 years ago
- OWASP IoT Top 10 2018 Mapping Project☆20Oct 16, 2019Updated 6 years ago
- A set of Gitlab pipelines and Github workflows to automate and ease on BugBounty and Penetration Testing engagements☆28Dec 18, 2022Updated 3 years ago
- Binary Analysis Next Generation (BANG)☆519Feb 19, 2026Updated 2 weeks ago
- the Network Protocol Fuzzer that we will want to use.☆793Jan 29, 2024Updated 2 years ago
- Hardware design files for the PMOD based MUX☆13Aug 22, 2019Updated 6 years ago
- A True Instrumentable Binary Emulation Framework☆5,827Nov 5, 2025Updated 4 months ago
- Raw binary firmware analysis software☆567Jun 6, 2024Updated last year
- Tools for analyzing UEFI firmware and checking UEFI modules with FwHunt rules☆242May 2, 2025Updated 10 months ago
- A sniffer for Bluetooth 5 and 4.x LE☆1,096Sep 25, 2025Updated 5 months ago
- APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is int…☆954Jan 17, 2025Updated last year
- A firmware base address search tool.☆372Sep 27, 2020Updated 5 years ago