Vulnerability Scanner for IOT Devices

Project Abstract: In 2022, the estimated number of IoT devices in the world is 23.14 billion, it is expected that by 2023, there will be an estimated 30.73 billion IoT devices. As time passes, more and more IoT devices are being introduced into the average household. More con

Project Title

Vulnerability Scanner for IOT Devices

Project Area of Specialization

Cyber Security

Project Summary

Project Abstract:

In 2022, the estimated number of IoT devices in the world is 23.14 billion, it is expected that by 2023, there will be an estimated 30.73 billion IoT devices. As time passes, more and more IoT devices are being introduced into the average household. More connected devices will mean greater security threats and more points of entry into your home network. In a survey of 5000 enterprises, 85% of these are in the process of deploying IoT devices, but only 10% are confident that they can secure these devices. This statistic shows that there will be a serious demand for IoT security in the coming years.

What are Vulnerability scanners?

Vulnerability scanners are software tools that probe and enumerate a set of targets (such as IoT devices on your network) and then attempt to identify security vulnerabilities on those devices. Most vulnerability scanners create a report revealing an overview of the devices identified and a list of vulnerabilities discovered. Vulnerability scanners are frequently used by IT companies to compile a network security baseline quickly, but you can apply the same tools to your own home network. 

The downside of Vulnerability scanners:

One downside to vulnerability scanners is that they require significant technical experience to configure and run properly. On top of that, commercial vulnerability scanners are expensive (Nessus license costs at least $2,790 per year).

Solution:

I will develop a Raspberry Pi vulnerability scanner that is extremely easy to use (just plug it into your router). In addition to scanning your own home network, you could also use it to scan any network you don’t trust for just a cost of RPi.

Project Objectives

The goal of this project is to put a vulnerability scanner on a Raspberry Pi which will have the ability to scan your internal network and inform you of potential security issues on your network. This device will tell you what ports are open, and the OS running on each device, and will also detect new devices added to the network. This will allow the user to quickly identify which IoT devices on their network require security attention. This project will involve finding out what are the most common vulnerabilities in IoT devices, what devices are most commonly infected, steps that a user can take to prevent infection, and the use a threat actor has for taking control of your IoT device.

Project Implementation Method

I will use the open-source vulnerability scanner “OpenVAS” to do the heavy lifting, and create a supporting infrastructure that makes running a vulnerability scan on your home network foolproof. In this project, I will use the dockerized version of OpenVAS this project is based on.

Once the Raspberry Pi is configured, you simply plug it into the back of your wireless router with an ethernet cable and plug the power source into your wall. The RPi will automatically boot up, send you an email letting you know the scan has started, enumerate and scan your network automatically, and then email you the results via an encrypted link that only you have access to. Want to rerun the scan? Just unplug the RPi and plug it back in.

Benefits of the Project

Benefits of the RPi vulnerability scanner:

• Raspberry Pi vulnerability scanner that is extremely easy to use (just plug it into your router) and it will send you the report.
• It is cheaper than any vulnerability scanner software.
• It will scan your own home network, you could also use it to scan any network you don’t trust.
• Don't need any technical knowledge to run it you just need to plug it into the router, the device will scan your network automatically, and then email you the results via an encrypted link that only you have access to.
• Want to rerun the scan? Just unplug the RPi and plug it back in.
• This device will give you the result in pdf format so you can read it easily.

Technical Details of Final Deliverable

For making a Raspberry Pi vulnerability scanner for IoT devices, I will need some ingredients:

1. Raspberry Pi 4, 4GB RAM Started Kit
2. Ethernet Cable
3. USB Keyboard and USB Mouse
4. Computer Monitor (with HDMI port)

After that, I'll use the dockerized version of OpenVAS software, just automating the raspberry pi with bash scripting and python programming. So when we plug In the raspberry Pi in the router, For the first time it will need your email so just enter our email where you will receive the result, After that, it will automatically boot up that OpenVAS dockerized version and send us the email that your scan is started, It will send the result data to Redis(The open-source, in-memory data store used by millions of developers as a database, cache, streaming engine, and message broker.) to format it and send us back when needed. After the completion of scanning, it will just email us that report in pdf format. If you want to run it again just Plug-In again in the router so this time it doesn't need any email it will send an email on the previous email you enter.

Final Deliverable of the Project

HW/SW integrated system

Core Industry

Security

Other Industries

IT , Media , Security

Core Technology

Internet of Things (IoT)

Other Technologies

Cloud Infrastructure, Others

Sustainable Development Goals

Industry, Innovation and Infrastructure

Required Resources

If you need this project, please contact me on contact@adikhanofficial.com