Recon for IoT devices

jessy.pinkman · July 27, 2022, 6:47am

Hello guys.
I jut wanted to know the method of recon for IoT devices. Any resources or any ideas?
I am totally new to this topic.
I hope this is not a dumb question. Thanks.

user66 · July 27, 2022, 6:49am

shodan, criminalip, censys

dvidpark4 · July 27, 2022, 6:50am

Yes you can. and this is only an exmaple. Target the softwares embeded in those devices.

user32 · July 27, 2022, 6:51am

Imagine a connected camera that runs a little daemon server, get the source code of that. Tiny program or reverse it and try to find falws in it to gain accedd to the device.
I don’t know much about attacking hardware part so I cant hlp you in this

jessy.pinkman · July 27, 2022, 6:52am

ok…like what would be the methodology of recon…like what tools can be used and what things we should look for while doing recon on IOT device?

user32 · July 27, 2022, 6:53am

You can get a lot of juicy resources by googling : iot hacking filetype:pdf
The 1st result http://kth.diva-portal.org/smash/get/diva2:1472577/FULLTEXT01.pdf gives an overview on how you should approach an IoT device. It’s not very detailled but it gives you some generic keys

jessy.pinkman · July 27, 2022, 6:54am

Thanks a lot… i will look further