Plugin

iothackbot

Name: iothackbot
Author: brownfinesecurity

Perform IoT security pentesting: analyze UEFI firmware dumps for rootkits with chipsec, scan networks for ONVIF cameras and devices using nmap and WS-Discovery, reverse engineer Android APKs with jadx and apktool, inspect PCAP traffic for insecure protocols, decode logic analyzer captures, and access UART/telnet shells.

npx claudepluginhub brownfinesecurity/iothackbot --plugin iothackbot

Component Overview

Skills

Component Details

Skills (12)

apktool

/skills/apktool

Android APK unpacking and resource extraction tool for reverse engineering. Use when you need to decode APK files, extract resources, examine AndroidManifest.xml, analyze smali code, or repackage modified APKs.

Chipsec - UEFI Firmware Static Analysis

/skills/chipsec

---

ffind

/skills/ffind

Advanced file finder with type detection and filesystem extraction for analyzing firmware and extracting embedded filesystems. Use when you need to analyze firmware files, identify file types, or extract ext2/3/4 or F2FS filesystems.

iotnet

/skills/iotnet

IoT network traffic analyzer for detecting IoT protocols and identifying security vulnerabilities in network communications. Use when you need to analyze network traffic, identify IoT protocols, or assess network security of IoT devices.

jadx

/skills/jadx

Android APK decompiler that converts DEX bytecode to readable Java source code. Use when you need to decompile APK files, analyze app logic, search for vulnerabilities, find hardcoded credentials, or understand app behavior through readable source code.

logicmso

/skills/logicmso

Analyze digital and analog captures from Saleae Logic MSO devices. Decode protocols like UART, SPI, I2C from exported binary files. Use when analyzing logic analyzer captures for CTF challenges, hardware reverse engineering, or protocol decoding.

netflows

/skills/netflows

Network flow extractor that analyzes pcap/pcapng files to identify outbound connections with automatic DNS hostname resolution. Use when you need to enumerate network destinations, identify what hosts a device communicates with, or map IP addresses to hostnames from packet captures.

nmap

/skills/nmap

Professional network reconnaissance and port scanning using nmap. Supports various scan types (quick, full, UDP, stealth), service detection, vulnerability scanning, and NSE scripts. Use when you need to enumerate network services, detect versions, or perform network reconnaissance.

onvifscan

/skills/onvifscan

ONVIF device security scanner for testing authentication and brute-forcing credentials. Use when you need to assess security of IP cameras or ONVIF-enabled devices.

picocom

/skills/picocom

Use picocom to interact with IoT device UART consoles for pentesting operations including device enumeration, vulnerability discovery, bootloader manipulation, and gaining root shells. Use when the user needs to interact with embedded devices, IoT hardware, or serial consoles.

telnetshell

/skills/telnetshell

Use telnet to interact with IoT device shells for pentesting operations including device enumeration, vulnerability discovery, credential testing, and post-exploitation. Use when the user needs to interact with network-accessible shells, IoT devices, or telnet services.

wsdiscovery

/skills/wsdiscovery

WS-Discovery protocol scanner for discovering and enumerating ONVIF cameras and IoT devices on the network. Use when you need to discover ONVIF devices, cameras, or WS-Discovery enabled equipment on a network.

README

IoTHackBot

Open-source IoT security testing toolkit with integrated Claude Code skills for automated vulnerability discovery.

Overview

IoTHackBot is a collection of specialized tools and Claude Code skills designed for security testing of IoT devices, IP cameras, and embedded systems. It provides both command-line tools and AI-assisted workflows for comprehensive IoT security assessments.

Tools Included

Network Discovery & Reconnaissance

wsdiscovery - WS-Discovery protocol scanner for discovering ONVIF cameras and IoT devices
iotnet - IoT network traffic analyzer for detecting protocols and vulnerabilities
netflows - Network flow extractor with DNS hostname resolution from pcap files
nmap (skill) - Professional network reconnaissance with two-phase scanning strategy

Device-Specific Testing

onvifscan - ONVIF device security scanner
- Authentication bypass testing
- Credential brute-forcing

Firmware & File Analysis

chipsec (skill) - UEFI/BIOS firmware static analysis
- Detect known rootkits (LoJax, ThinkPwn, HackingTeam)
- Generate EFI executable inventories with hashes
- Decode firmware structure and extract NVRAM
ffind - Advanced file finder with type detection and filesystem extraction
- Identifies artifact file types
- Extracts ext2/3/4 and F2FS filesystems
- Designed for firmware analysis

Android Analysis

apktool (skill) - APK unpacking and resource extraction
- Decode AndroidManifest.xml
- Extract resources, layouts, strings
- Disassemble to smali code
jadx (skill) - APK decompilation
- Convert DEX to readable Java source
- Search for hardcoded credentials
- Analyze app logic

Hardware & Console Access

picocom (skill) - IoT UART console interaction for hardware testing
- Bootloader manipulation
- Shell enumeration
- Firmware extraction
- Includes Python helper script for automated interaction
telnetshell (skill) - IoT telnet shell interaction
- Unauthenticated shell testing
- Device enumeration
- BusyBox command handling
- Includes Python helper script and pre-built enumeration scripts

Installation

Prerequisites

# Python dependencies
pip install colorama pyserial pexpect requests

# System dependencies (Arch Linux)
sudo pacman -S nmap e2fsprogs f2fs-tools python python-pip inetutils

# For other distributions, install equivalent packages

Setup

Clone the repository:

git clone https://github.com/BrownFineSecurity/iothackbot.git
cd iothackbot

Add the bin directory to your PATH:

export PATH="$PATH:$(pwd)/bin"

For permanent setup, add to your shell configuration:

echo 'export PATH="$PATH:/path/to/iothackbot/bin"' >> ~/.bashrc

Usage

Quick Start Examples

Discover ONVIF Devices

wsdiscovery 192.168.1.0/24

Test ONVIF Device Security

onvifscan auth http://192.168.1.100
onvifscan brute http://192.168.1.100

Analyze Network Traffic

# Analyze PCAP file for IoT protocols
iotnet capture.pcap

# Live capture
sudo iotnet -i eth0 -d 60

Extract Network Flows

# Extract flows from device with DNS resolution
netflows capture.pcap --source-ip 192.168.1.100

# Get just hostname:port list
netflows capture.pcap -s 192.168.1.100 --format quiet

Analyze Firmware

# Identify file types
ffind firmware.bin

# Extract filesystems (requires sudo)
sudo ffind firmware.bin -e

Claude Code Plugin

IoTHackBot is available as a Claude Code plugin, providing AI-assisted security testing with specialized skills.

Available Skills

Skill	Description
chipsec	UEFI/BIOS firmware static analysis - malware detection, EFI inventory
apktool	Android APK unpacking and resource extraction
jadx	Android APK decompilation to Java source
ffind	Firmware file analysis with filesystem extraction
iotnet	IoT network traffic analysis
netflows	Network flow extraction with DNS hostname resolution
nmap	Professional network reconnaissance
onvifscan	ONVIF device security testing
picocom	UART console interaction
telnetshell	Telnet shell enumeration
wsdiscovery	WS-Discovery device discovery

Plugin Installation

Option 1: Use directly during development

claude --plugin-dir /path/to/iothackbot

Option 2: Install as local marketplace (persistent)

Add to ~/.claude/settings.json:

{
  "extraKnownMarketplaces": {
    "iothackbot-local": {
      "source": {
        "source": "directory",
        "path": "/path/to/iothackbot"
      }
    }
  },
  "enabledPlugins": {
    "iothackbot": true
  }
}

Then restart Claude Code for the settings to take effect.

Option 3: Project-specific setup

View full README on GitHub

Similar Plugins

fullstack-dev-skills

8.6k

204

Comprehensive skill pack with 66 specialized skills for full-stack developers: 12 language experts (Python, TypeScript, Go, Rust, C++, Swift, Kotlin, C#, PHP, Java, SQL, JavaScript), 10 backend frameworks, 6 frontend/mobile, plus infrastructure, DevOps, security, and testing. Features progressive disclosure architecture for 50% faster loading.

Stats

Version1.0.0

Stars674

Forks105

Installs2

MaintenanceExcellent

LicenseMIT

AddedDec 24, 2025

Actions

View on GitHub View README Plugin Marketplace JSON Homepage

Available In

iothackbot-marketplace612

IoTHackBot

Open-source IoT security testing toolkit with integrated Claude Code skills for automated vulnerability discovery.

Overview

Tools Included

Network Discovery & Reconnaissance

wsdiscovery - WS-Discovery protocol scanner for discovering ONVIF cameras and IoT devices
iotnet - IoT network traffic analyzer for detecting protocols and vulnerabilities
netflows - Network flow extractor with DNS hostname resolution from pcap files
nmap (skill) - Professional network reconnaissance with two-phase scanning strategy

Device-Specific Testing

onvifscan - ONVIF device security scanner
- Authentication bypass testing
- Credential brute-forcing

Firmware & File Analysis

chipsec (skill) - UEFI/BIOS firmware static analysis
- Detect known rootkits (LoJax, ThinkPwn, HackingTeam)
- Generate EFI executable inventories with hashes
- Decode firmware structure and extract NVRAM
ffind - Advanced file finder with type detection and filesystem extraction
- Identifies artifact file types
- Extracts ext2/3/4 and F2FS filesystems
- Designed for firmware analysis

Android Analysis

apktool (skill) - APK unpacking and resource extraction
- Decode AndroidManifest.xml
- Extract resources, layouts, strings
- Disassemble to smali code
jadx (skill) - APK decompilation
- Convert DEX to readable Java source
- Search for hardcoded credentials
- Analyze app logic

Hardware & Console Access

picocom (skill) - IoT UART console interaction for hardware testing
- Bootloader manipulation
- Shell enumeration
- Firmware extraction
- Includes Python helper script for automated interaction
telnetshell (skill) - IoT telnet shell interaction
- Unauthenticated shell testing
- Device enumeration
- BusyBox command handling
- Includes Python helper script and pre-built enumeration scripts

Installation

Prerequisites

# Python dependencies
pip install colorama pyserial pexpect requests

# System dependencies (Arch Linux)
sudo pacman -S nmap e2fsprogs f2fs-tools python python-pip inetutils

# For other distributions, install equivalent packages

Setup

Clone the repository:

git clone https://github.com/BrownFineSecurity/iothackbot.git
cd iothackbot

Add the bin directory to your PATH:

export PATH="$PATH:$(pwd)/bin"

For permanent setup, add to your shell configuration:

echo 'export PATH="$PATH:/path/to/iothackbot/bin"' >> ~/.bashrc

Usage

Quick Start Examples

Discover ONVIF Devices

wsdiscovery 192.168.1.0/24

Test ONVIF Device Security

onvifscan auth http://192.168.1.100
onvifscan brute http://192.168.1.100

Analyze Network Traffic

# Analyze PCAP file for IoT protocols
iotnet capture.pcap

# Live capture
sudo iotnet -i eth0 -d 60

Extract Network Flows

# Extract flows from device with DNS resolution
netflows capture.pcap --source-ip 192.168.1.100

# Get just hostname:port list
netflows capture.pcap -s 192.168.1.100 --format quiet

Analyze Firmware

# Identify file types
ffind firmware.bin

# Extract filesystems (requires sudo)
sudo ffind firmware.bin -e

Claude Code Plugin

IoTHackBot is available as a Claude Code plugin, providing AI-assisted security testing with specialized skills.

Available Skills

Skill	Description
chipsec	UEFI/BIOS firmware static analysis - malware detection, EFI inventory
apktool	Android APK unpacking and resource extraction
jadx	Android APK decompilation to Java source
ffind	Firmware file analysis with filesystem extraction
iotnet	IoT network traffic analysis
netflows	Network flow extraction with DNS hostname resolution
nmap	Professional network reconnaissance
onvifscan	ONVIF device security testing
picocom	UART console interaction
telnetshell	Telnet shell enumeration
wsdiscovery	WS-Discovery device discovery

Plugin Installation

Option 1: Use directly during development

claude --plugin-dir /path/to/iothackbot

Option 2: Install as local marketplace (persistent)

Add to ~/.claude/settings.json:

{
  "extraKnownMarketplaces": {
    "iothackbot-local": {
      "source": {
        "source": "directory",
        "path": "/path/to/iothackbot"
      }
    }
  },
  "enabledPlugins": {
    "iothackbot": true
  }
}

Then restart Claude Code for the settings to take effect.

Option 3: Project-specific setup

iothackbot

Component Overview

Component Details

Skills (12)

README

IoTHackBot

Overview

Tools Included

Network Discovery & Reconnaissance

Device-Specific Testing

Firmware & File Analysis

Android Analysis

Hardware & Console Access

Installation

Prerequisites

Setup

Usage

Quick Start Examples

Discover ONVIF Devices

Test ONVIF Device Security

Analyze Network Traffic

Extract Network Flows

Analyze Firmware

Claude Code Plugin

Available Skills

Plugin Installation

Similar Plugins

fullstack-dev-skills

iothackbot

Component Overview

Component Details

Skills (12)

README

IoTHackBot

Overview

Tools Included

Network Discovery & Reconnaissance

Device-Specific Testing

Firmware & File Analysis

Android Analysis

Hardware & Console Access

Installation

Prerequisites

Setup

Usage

Quick Start Examples

Discover ONVIF Devices

Test ONVIF Device Security

Analyze Network Traffic

Extract Network Flows

Analyze Firmware

Claude Code Plugin

Available Skills

Plugin Installation

Similar Plugins

fullstack-dev-skills

everything-claude-code

reverse-engineering

prompts.chat

andrej-karpathy-skills

claude-md-management