IoT

• http://konukoii.com/blog/2018/02/13/lifting-firmware-with-the-bus-pirate/
• http://marcusjenkins.com/hacking-cheap-ebay-ip-camera/
• https://0x00sec.org/t/hydrabus-framework/17057
• https://ark444.github.io/posts/HydraBus_presentation
• https://azeria-labs.com/emulating-arm-firmware/
• https://bitbucket.org/jmichel/tools/src/default/
• https://blahcat.github.io/2017/06/25/qemu-images-to-play-with/
• https://blog.attify.com/getting-started-with-firmware-emulation/
• https://blog.includesecurity.com/2015/11/NordicSemi-ARM-SoC-Firmware-dumping-technique.html
• https://blog.quarkslab.com/flash-dumping-part-i.html
• https://collaborate.mitre.org/attackics/index.php/Main_Page
• https://cybergibbons.com/hardware-hacking/building-tools-for-hardware-hacking/
• https://eax.me/hydrabus/
• https://embeddedbits.org/2020-02-20-extracting-firmware-from-devices-using-jtag/
• https://github.com/fkie-cad/awesome-embedded-and-iot-security
• https://github.com/Hitsxx/NandTool/blob/master/Nand-dump-tool.py
• https://github.com/hydrabus/DumpFlash-Hydrabus
• https://github.com/hydrabus-framework/framework
• https://github.com/nlitsme/ubidump
• https://github.com/ohjeongwook/dumpflash
• https://github.com/osresearch/spispy/blob/master/README.md
• https://github.com/rampageX/arm-static-bins
• https://github.com/ReFirmLabs/binwalk/blob/master/INSTALL.md
• https://gracefulsecurity.com/jtagulating-jtag/
• https://ianhowson.com/iot/extracting-firmware/
• https://jcjc-dev.com/2016/04/08/reversing-huawei-router-1-find-uart/
• https://jcjc-dev.com/2016/04/29/reversing-huawei-router-2-scouting-firmware/
• https://jcjc-dev.com/2016/05/23/reversing-huawei-3-sniffing/
• https://jcjc-dev.com/2016/06/08/reversing-huawei-4-dumping-flash/
• https://jcjc-dev.com/2016/12/14/reversing-huawei-5-reversing-firmware/
• https://labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare
• https://labs.portcullis.co.uk/blog/jtag-on-chip-debugging-extracting-passwords-from-memory/
• https://medicineyeh.wordpress.com/2016/03/29/buildup-your-arm-image-for-qemu/
• https://mkrak.org/2018/01/26/updating-embedded-linux-devices-part2/
• https://nvisium.com/blog/2019/08/07/extracting-firmware-from-iot-devices.html
• https://people.debian.org/~aurel32/qemu/mipsel/
• https://project-awesome.org/fkie-cad/awesome-embedded-and-iot-security
• https://sensepeek.com/pcbite_20
• https://sock-raw.org/blog/practical-iot-hacking-timeline/
• https://wiki.dd-wrt.com/wiki/index.php/JTAG_pinouts
• https://wrongbaud.github.io/BasicFUN-flashing/
• https://www.exploitee.rs/
• https://www.gracefulsecurity.com/extracting-flash-memory-over-spi/
• https://www.hackers-arise.com/post/2017/10/31/bluetooth-hacking-part-3-the-bluebourne-exploit
• https://www.hutasu.net/rakentelut/piirilevyjen-tekeminen-syovyttamalla/
• https://www.ixiacom.com/company/blog/hardware-reverse-engineering-hack-tp-link-ac1750-router-root-password-using-jtag
• https://www.j-michel.org/blog/2014/05/27/from-nand-chip-to-files
• https://www.linuxjournal.com/content/handy-u-boot-trick
• https://www.mcafee.com/enterprise/en-us/assets/misc/ms-glitching-uboot.pdf
• https://www.pentestpartners.com/security-blog/how-to-do-firmware-analysis-tools-tips-and-tricks/
• https://www.refirmlabs.com/d-link-a-firmware-security-analysis-part-3/
• https://www.refirmlabs.com/reverse-engineering-my-routers-firmware-with-binwalk/
• https://www.secforce.com/blog/2014/07/reverse-engineer-router-firmware-part-2/
• https://www.thezdi.com/blog/2020/5/27/mindshare-how-to-just-emulate-it-with-qemu
• http://www.grandideastudio.com/jtagulator/

IoT Books

• https://www.amazon.com/IoT-Hackers-Handbook-Practical-Internet/dp/1484242998

---