mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-06 07:48:57 +03:00
Add folder anatomy (scripts/agent.py + references/api-reference.md) for 648 cybersecurity skills
Complete skill folder anatomy across all cybersecurity skills: - scripts/agent.py: 80-150 line Python agents using real libraries (impacket, boto3, azure-mgmt-*, kubernetes, pefile, yara, scapy, shodan, stix2, etc.) - references/api-reference.md: real API documentation with method signatures - LICENSE: MIT license for all skill folders
This commit is contained in:
@@ -0,0 +1,50 @@
|
||||
# API Reference: IoT Security Assessment
|
||||
|
||||
## Tools CLI Reference
|
||||
|
||||
| Tool | Command | Description |
|
||||
|------|---------|-------------|
|
||||
| nmap | `nmap -sV -sC -p- <target>` | Full port scan with version detection |
|
||||
| binwalk | `binwalk -eM <firmware>` | Recursive firmware extraction |
|
||||
| tcpdump | `tcpdump -i <iface> host <ip> -w <pcap>` | Packet capture from device |
|
||||
| openssl | `openssl s_client -connect <ip>:<port>` | TLS certificate inspection |
|
||||
| flashrom | `flashrom -p ch341a_spi -r <output>` | SPI flash memory dump |
|
||||
|
||||
## Firmwalker (Firmware Scanner)
|
||||
|
||||
```bash
|
||||
./firmwalker.sh <extracted_fs_root>/
|
||||
# Scans for: passwords, keys, URLs, IPs, emails, config files
|
||||
```
|
||||
|
||||
## FirmAE / Firmadyne (Firmware Emulation)
|
||||
|
||||
```bash
|
||||
python3 fat.py <firmware.bin>
|
||||
# Boots extracted Linux firmware in QEMU for dynamic testing
|
||||
```
|
||||
|
||||
## Python Libraries
|
||||
|
||||
| Library | Version | Purpose |
|
||||
|---------|---------|---------|
|
||||
| `subprocess` | stdlib | Execute nmap, binwalk, tcpdump commands |
|
||||
| `hashlib` | stdlib | Firmware integrity hashing |
|
||||
| `paho-mqtt` | >=1.6 | MQTT protocol testing for unauthenticated access |
|
||||
|
||||
## Common IoT Protocols & Ports
|
||||
|
||||
| Protocol | Port | Security Concern |
|
||||
|----------|------|-----------------|
|
||||
| MQTT | 1883/8883 | Often unauthenticated, subscribe to # |
|
||||
| CoAP | 5683 | UDP-based, usually no authentication |
|
||||
| UPnP | 1900 | Service discovery, often exposes admin |
|
||||
| RTSP | 554 | Video streams, frequently unauthenticated |
|
||||
| Telnet | 23 | Plaintext credentials |
|
||||
|
||||
## References
|
||||
|
||||
- OWASP IoT Top 10: https://owasp.org/www-project-internet-of-things/
|
||||
- FCC ID lookup: https://www.fcc.gov/oet/ea/fccid
|
||||
- Firmadyne: https://github.com/firmadyne/firmadyne
|
||||
- Binwalk: https://github.com/ReFirmLabs/binwalk
|
||||
Reference in New Issue
Block a user