Abstract
As the prevalence of Internet of things (IoT) continues to increase, there is a corresponding escalation in security concerns. Given that many IoT devices lack robust security features, the need for specialized security testing tools has become evident. In this paper, we introduce an open-source automated penetration testing tool named IoTective for smart home environments in response to the increasing security concerns surrounding IoT devices. IoTective aims to discover devices in Wi-Fi, Bluetooth, and Zigbee networks, identify vulnerabilities, and gather valuable information for further analysis. IoTective streamlines the initial stages of reconnaissance, planning, and scanning, which provides a good support for a variety of devices and protocols common used in smart home environments. With a focus on ease of use and flexibility, the tool provides an intuitive user interface and customizable scanning capabilities. We evaluated the effectiveness of IoTective and explored the impact on overall security posture. Ethical considerations for automated penetration testing are also discussed.
Original language | English |
---|---|
Title of host publication | Proceedings of the 9th International Conference on Internet of Things, Big Data and Security, IoTBDS 2024 |
Editors | Anna Kobusinska, Andreas Jacobsson, Victor Chang |
Publisher | SciTePress |
Pages | 29-39 |
Number of pages | 11 |
ISBN (Electronic) | 9789897586996 |
DOIs | |
Publication status | Published - Apr 2024 |
Publication series
Name | International Conference on Internet of Things, Big Data and Security, IoTBDS - Proceedings |
---|---|
ISSN (Electronic) | 2184-4976 |
Bibliographical note
Publisher Copyright:© 2024 by SCITEPRESS – Science and Technology Publications, Lda.
Keywords
- IoT
- Network Scanning
- Penetration Testing
- Security Testing
- Smart Homes
- Vulnerability Identification