IoT Security

Beginner

Firmwalker

Script for searching extracted firmware for security vulnerabilities

4.3/5.0

800,000downloads

Updated 1/15/2024

Official Website GitHub Documentation

Tool Information

Platforms

Linux

macOS

License

BSD-3-Clause

Techniques

Firmware Security Analysis

Configuration Review

Credential Discovery

File System Enumeration

About Firmwalker

Firmwalker is a simple bash script for searching the extracted or mounted firmware file system. It will search through the extracted or mounted firmware file system for things of interest such as: etc/shadow and etc/passwd, list out the etc/ssl directory, search for SSL related files such as .pem, .crt, etc., search for configuration files, search for database files, search for server binaries, search for other interesting files such as ssh keys, and more.

Use Cases

Firmware Security Assessment
IoT Vulnerability Discovery
Configuration Analysis

Related Tools

Binwalk

Firmware analysis tool for searching and extracting embedded files

IoT Security

4.7/5.0(3,500,000 downloads)

firmware

analysis

extraction

View Details

FACT (Firmware Analysis and Comparison Tool)

Platform for automated firmware security analysis

IoT Security

4.6/5.0(1,200,000 downloads)

firmware

analysis

automation

View Details

Ghidra

NSA's software reverse engineering framework

IoT Security

4.8/5.0(5,000,000 downloads)

reverse-engineering

disassembler

decompiler

View Details

Community Discussion

Join the discussion! Share your thoughts, ask questions, or contribute your expertise to help the cybersecurity community.

Please enable JavaScript to view the comments powered by Disqus.

Firmwalker

Platforms

License

Techniques

Use Cases

Tags

Related Tools