Skip to Main content Skip to Navigation
Conference papers

Mirage: towards a Metasploit-like framework for IoT

Abstract : Internet of Things (IoT) devices are nowadays widely used in individual homes and factories. Securing these new systems becomes a priority. However, conducting security audits of these connected objects based on experimental evaluation is a challenging task: it requires the use of heterogeneous hardware components leading to a set of specialised software tools, generally incompatible with each other and often complex to use. In this paper, we present a security audit and penetration testing framework called Mirage. This framework, written in Python, is dedicated to the analysis of wireless communications commonly used by IoT devices, and provides a generic, modular, unified and low level audit environment that is easy to adapt to new protocols. The paper describes the software architecture of Mirage, its goals and main features, and presents a concrete example of security audit performed with this framework.
Complete list of metadata

Cited literature [25 references]  Display  Hide  Download

https://hal.laas.fr/hal-02346074
Contributor : Romain Cayre <>
Submitted on : Monday, November 4, 2019 - 5:43:44 PM
Last modification on : Thursday, June 10, 2021 - 3:01:22 AM
Long-term archiving on: : Wednesday, February 5, 2020 - 11:02:41 PM

File

ISSRE_HAL.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-02346074, version 1

Citation

Romain Cayre, Vincent Nicomette, Guillaume Auriol, Eric Alata, Mohamed Kaâniche, et al.. Mirage: towards a Metasploit-like framework for IoT. 2019 IEEE 30th International Symposium on Software Reliability Engineering (ISSRE), Oct 2019, Berlin, Germany. ⟨hal-02346074⟩

Share

Metrics

Record views

303

Files downloads

562