Security News > 2023 > December > EMBA: Open-source security analyzer for embedded devices
The EMBA open-source security analyzer is tailored as the central firmware analysis tool for penetration testers and product security groups.
It assists throughout the security evaluation procedure, extracting firmware, conducting static and dynamic analysis through emulation, and creating a web-based report.
EMBA identifies potential vulnerabilities and weak points in firmware, such as insecure binaries, outdated software components, scripts that might be susceptible to attack, or embedded hard-coded passwords.
This command line tool also offers the option to produce a user-friendly web report for more in-depth analysis.
"Our goal is to establish EMBA in the community further and that more and more people are using it to enhance the security of products in the IoT field and the OT, ICS, and KRITIS environments. From a technical perspective, we will further improve EMBA as scanning the backend in every area," Messner concluded.
News URL
https://www.helpnetsecurity.com/2023/12/19/emba-open-source-security-analyzer-embedded-devices/
Related news
- Open source maintainers: Key to software health and security (source)
- Osmedeus: Open-source workflow engine for offensive security (source)
- Am I Isolated: Open-source container security benchmark (source)
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- Debunking myths about open-source security (source)
- AxoSyslog: Open-source scalable security data processor (source)