IoT-Implant-Toolkit: Toolkit for implant attack of IoT devices

by do son ·

IoT-Implant-Toolkit

IoT-Implant-Toolkit

IoT-Implant-Toolkit is a framework of useful tools for malware implantation research of IoT devices. It is a toolkit consisted of essential software tools on firmware modification, serial port debugging, software analysis and stable spy clients. With an easy-to-use and extensible shell-like environment, IoT-Implant-Toolkit is a one-stop-shop toolkit simplifies the complex procedure of IoT malware implantation.

In our research, we have successfully implanted Trojans in eight devices including smart speakers, cameras, driving recorders and mobile translators with IoT-Implant-Toolkit.

Features

Each software tool acts as a plugin which can be easily added into the framework.

There are more than ten plugins in four categories, including topics on serial port debugging, firmware pack&unpack, software analysis, and implanted spy programs.

List of Plugins

Existing plugins in our framework:

Categories Tools Descriptions Reference
Serial port debugging pyserial modem control and terminal emulation program https://github.com/pyserial/pyserial
Serial port debugging baudrate.py find correct baudrate https://github.com/devttys0/baudrate
Firmware Pack&Unpack mksquashfs create and extract Squashfs filesystem https://github.com/plougher/squashfs-tools
Firmware Pack&Unpack mkbootimg_tools Unpack&repack boot.img for Android https://github.com/xiaolu/mkbootimg_tools
Firmware Pack&Unpack cramfs make cramfs filesystem https://sourceforge.net/projects/cramfs/files/cramfs/1.1/
Firmware Pack&Unpack mounting mount&unmount ext4 filesystems for Android system.img&data.img On our github
Software Analysis setools-android setools for Android with sepolicy-inject https://github.com/xmikos/setools-android
Software Analysis crosscomplie crosscompile toolchain for arm on our Github later
Software Analysis odex unpack Odex to smali for Android on our Github
Binary implant spy client&server a stable spy client and server, source and pre-built bins on our Github
Binary implant denoise tool denoise tool for audio process on our Github

Installation

$ sudo apt install sox ffmpeg
$ git clone https://github.com/arthastang/IoT-Implant-Toolkit.git
$ cd IoT-Implant-Toolkit/
$ python3 setup.py install

Use

$ python3 -B IoT-Implant-Toolkit.py

 _____   _______   _____                 _             _       _______          _ _    _ _   

|_   _| |__   __| |_   _|               | |           | |     |__   __|        | | |  (_) |  

  | |  ___ | |______| |  _ __ ___  _ __ | | __ _ _ __ | |_ ______| | ___   ___ | | | ___| |_ 

  | | / _ \| |______| | | '_ ` _ \| '_ \| |/ _` | '_ \| __|______| |/ _ \ / _ \| | |/ / | __|

 _| || (_) | |     _| |_| | | | | | |_) | | (_| | | | | |_       | | (_) | (_) | |   <| | |_ 

|_____\___/|_|    |_____|_| |_| |_| .__/|_|\__,_|_| |_|\__|      |_|\___/ \___/|_|_|\_\_|\__|

                                  | |                                                        

                                  |_|                                                        

            

                                 IoT-Implant-Toolkit

            -------------------------------------------------------------

                      A Framework for IoT implantation research.



                                   by Marvel Team



            Command:

            list - List all tools

            run - Run a specific tool

            exit - Exit



                

[Implant-Toolkit]>

 

Demo

Copyright (c) 2018 MarvelTeamLab

Source: https://github.com/arthastang/

Tags: IoT-Implant-Toolkit