iotnet

IoTHackBot is a collection of specialized tools and Claude Code skills designed for security testing of IoT devices, IP cameras, and embedded systems. It provides both command-line tools and AI-assisted workflows for comprehensive IoT security assessments.

Network Discovery & Reconnaissance

• wsdiscovery - WS-Discovery protocol scanner for discovering ONVIF cameras and IoT devices
• iotnet - IoT network traffic analyzer for detecting protocols and vulnerabilities
• nmap (skill) - Professional network reconnaissance with two-phase scanning strategy

Device-Specific Testing

• onvifscan - ONVIF device security scanner

- Authentication bypass testing

- Credential brute-forcing

Firmware & File Analysis

• chipsec (skill) - UEFI/BIOS firmware static analysis

- Detect known rootkits (LoJax, ThinkPwn, HackingTeam)

- Generate EFI executable inventories with hashes

- Decode firmware structure and extract NVRAM

• ffind - Advanced file finder with type detection and filesystem extraction

- Identifies artifact file types

- Extracts ext2/3/4 and F2FS filesystems

- Designed for firmware analysis

Android Analysis

• apktool (skill) - APK unpacking and resource extraction

- Decode AndroidManifest.xml

- Extract resources, layouts, strings

- Disassemble to smali code

• jadx (skill) - APK decompilation

- Convert DEX to readable Java source

- Search for hardcoded credentials

- Analyze app logic

Hardware & Console Access

• picocom (skill) - IoT UART console interaction for hardware testing

- Bootloader manipulation

- Shell enumeration

- Firmware extraction

- Includes Python helper script for automated interaction

• telnetshell (skill) - IoT telnet shell interaction

- Unauthenticated shell testing

- Device enumeration

- BusyBox command handling

- Includes Python helper script and pre-built enumeration scripts

Prerequisites

```bash

# Python dependencies

pip install colorama pyserial pexpect requests

# System dependencies (Arch Linux)

sudo pacman -S nmap e2fsprogs f2fs-tools python python-pip inetutils

# For other distributions, install equivalent packages

```

Setup

1. Clone the repository:

```bash

git clone https://github.com/BrownFineSecurity/iothackbot.git

cd iothackbot

```

1. Add the bin directory to your PATH:

```bash

export PATH="$PATH:$(pwd)/bin"

```

1. For permanent setup, add to your shell configuration:

```bash

echo 'export PATH="$PATH:/path/to/iothackbot/bin"' >> ~/.bashrc

```

Quick Start Examples

#### Discover ONVIF Devices

```bash

wsdiscovery 192.168.1.0/24

```

#### Test ONVIF Device Security

```bash

onvifscan auth http://192.168.1.100

onvifscan brute http://192.168.1.100

```

#### Analyze Network Traffic

```bash

# Analyze PCAP file

iotnet capture.pcap

# Live capture

sudo iotnet -i eth0 -d 60

```

#### Analyze Firmware

```bash

# Identify file types

ffind firmware.bin

# Extract filesystems (requires sudo)

sudo ffind firmware.bin -e

```

Claude Code Plugin

IoTHackBot is available as a Claude Code plugin, providing AI-assisted security testing with specialized skills.

#### Available Skills

| Skill | Description |

|-------|-------------|

| chipsec | UEFI/BIOS firmware static analysis - malware detection, EFI inventory |

| apktool | Android APK unpacking and resource extraction |

| jadx | Android APK decompilation to Java source |

| ffind | Firmware file analysis with filesystem extraction |

| iotnet | IoT network traffic analysis |

| nmap | Professional network reconnaissance |

| onvifscan | ONVIF device security testing |

| picocom | UART console interaction |

| telnetshell | Telnet shell enumeration |

| wsdiscovery | WS-Discovery device discovery |

#### Plugin Installatio