Firmware re-hosting is crucial when developing methodologies to simulate and execute device-specific firmware, including techniques for firmware testing and security assessments. Although state-of-the-art solutions such as Firmadyne and FirmAE emulate IoT firmware, they cannot simulate communication with external clients and provide limited real-time and security testing support. In this demonstration, we introduce MITHRAS. This novel simulation framework enables static instrumentation and full emulation of IoT device firmware, allowing communication with external clients such as the companion app installed on a smartphone. MITHRAS also supports dynamic instrumentation of the code of the mobile companion app, allowing users to gather detailed information on the app’s execution. MITHRAS supports seamless communication between the emulated IoT device and its companion smartphone app, providing a fully integrated emulation environment. Moreover, it offers real-time tracing of php script executions
MITHRAS: A Dynamic Analysis Framework for the Mobile-IoT Ecosystem
Francesco Pagano
;Mariano Ceccato;
2025-01-01
Abstract
Firmware re-hosting is crucial when developing methodologies to simulate and execute device-specific firmware, including techniques for firmware testing and security assessments. Although state-of-the-art solutions such as Firmadyne and FirmAE emulate IoT firmware, they cannot simulate communication with external clients and provide limited real-time and security testing support. In this demonstration, we introduce MITHRAS. This novel simulation framework enables static instrumentation and full emulation of IoT device firmware, allowing communication with external clients such as the companion app installed on a smartphone. MITHRAS also supports dynamic instrumentation of the code of the mobile companion app, allowing users to gather detailed information on the app’s execution. MITHRAS supports seamless communication between the emulated IoT device and its companion smartphone app, providing a fully integrated emulation environment. Moreover, it offers real-time tracing of php script executionsFile | Dimensione | Formato | |
---|---|---|---|
FSE 25.pdf
accesso aperto
Tipologia:
Versione dell'editore
Licenza:
Creative commons
Dimensione
849.21 kB
Formato
Adobe PDF
|
849.21 kB | Adobe PDF | Visualizza/Apri |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.