Tools & Resources

BaudOwl

by iotsrg

The Serial Port Detective - a Rust tool that auto-detects UART baud rates, fingerprints protocols, extracts firmware, exploits U-Boot, and fuzzes serial interfaces.

EMBA

by e-m-b-a

The central firmware security analyzer for pentesters - static analysis, dynamic emulation, and SBOM generation with web-based vulnerability reports.

FACT (FACT_core)

by fkie-cad

Firmware Analysis and Comparison Tool - automates unpacking and analysis of firmware to surface components and vulnerabilities in a searchable, comparable web UI.

Bus Pirate

by Dangerous Prototypes

An open-source universal hardware-hacking tool - talk to chips over 1-Wire, I²C, SPI, UART and more from a simple terminal.

Logic Analyzer

Capture and decode UART, SPI, and I²C traffic to locate debug interfaces and sniff data on the wire - the first tool out of the bag on any new board.

CH341A + SOIC-8 Clip

Clip onto an SPI flash chip in-circuit and dump the firmware without desoldering - the fastest path to a device's code.

Hot Air Rework Station

Desolder eMMC/BGA packages for off-chip dumping and reballing when in-circuit reads aren't an option.

JTAGulator (or DIY build)

Identify JTAG/UART pinouts on unknown headers by brute-forcing pin combinations - build your own for under $75.