IoT-Implant-Toolkit: Toolkit for implant attack of IoT devices

by do son · October 1, 2018

IoT-Implant-Toolkit

IoT-Implant-Toolkit is a framework of useful tools for malware implantation research of IoT devices. It is a toolkit consisted of essential software tools on firmware modification, serial port debugging, software analysis and stable spy clients. With an easy-to-use and extensible shell-like environment, IoT-Implant-Toolkit is a one-stop-shop toolkit simplifies the complex procedure of IoT malware implantation.

In our research, we have successfully implanted Trojans in eight devices including smart speakers, cameras, driving recorders and mobile translators with IoT-Implant-Toolkit.

Features

Each software tool acts as a plugin which can be easily added into the framework.

There are more than ten plugins in four categories, including topics on serial port debugging, firmware pack&unpack, software analysis, and implanted spy programs.

List of Plugins

Existing plugins in our framework:

Categories	Tools	Descriptions	Reference
Serial port debugging	pyserial	modem control and terminal emulation program	https://github.com/pyserial/pyserial
Serial port debugging	baudrate.py	find correct baudrate	https://github.com/devttys0/baudrate
Firmware Pack&Unpack	mksquashfs	create and extract Squashfs filesystem	https://github.com/plougher/squashfs-tools
Firmware Pack&Unpack	mkbootimg_tools	Unpack&repack boot.img for Android	https://github.com/xiaolu/mkbootimg_tools
Firmware Pack&Unpack	cramfs	make cramfs filesystem	https://sourceforge.net/projects/cramfs/files/cramfs/1.1/
Firmware Pack&Unpack	mounting	mount&unmount ext4 filesystems for Android system.img&data.img	On our github
Software Analysis	setools-android	setools for Android with sepolicy-inject	https://github.com/xmikos/setools-android
Software Analysis	crosscomplie	crosscompile toolchain for arm	on our Github later
Software Analysis	odex unpack	Odex to smali for Android	on our Github
Binary implant	spy client&server	a stable spy client and server, source and pre-built bins	on our Github
Binary implant	denoise tool	denoise tool for audio process	on our Github

Installation

$ sudo apt install sox ffmpeg
$ git clone https://github.com/arthastang/IoT-Implant-Toolkit.git
$ cd IoT-Implant-Toolkit/
$ python3 setup.py install

Use

$ python3 -B IoT-Implant-Toolkit.py

 _____   _______   _____                 _             _       _______          _ _    _ _   

|_   _| |__   __| |_   _|               | |           | |     |__   __|        | | |  (_) |  

  | |  ___ | |______| |  _ __ ___  _ __ | | __ _ _ __ | |_ ______| | ___   ___ | | | ___| |_ 

  | | / _ \| |______| | | '_ ` _ \| '_ \| |/ _` | '_ \| __|______| |/ _ \ / _ \| | |/ / | __|

 _| || (_) | |     _| |_| | | | | | |_) | | (_| | | | | |_       | | (_) | (_) | |   <| | |_ 

|_____\___/|_|    |_____|_| |_| |_| .__/|_|\__,_|_| |_|\__|      |_|\___/ \___/|_|_|\_\_|\__|

                                  | |                                                        

                                  |_|                                                        

            

                                 IoT-Implant-Toolkit

            -------------------------------------------------------------

                      A Framework for IoT implantation research.



                                   by Marvel Team



            Command:

            list - List all tools

            run - Run a specific tool

            exit - Exit



                

[Implant-Toolkit]>

Demo

Source: https://github.com/arthastang/

IoT-Implant-Toolkit: Toolkit for implant attack of IoT devices

Search

Brilliantly

Content & Links