Hasty Briefsbeta

EMBA – The Firmware Security Analyzer

9 days ago
https://github.com/e-m-b-a/emba
Copy Link
  • #SBOM-tool
  • #firmware-security
  • #penetration-testing
  • EMBA is a firmware analysis and SBOM tool for penetration testers, product security teams, developers, and product managers.
  • It supports the full security analysis process: firmware extraction, static/dynamic analysis, SBOM generation, and web-based vulnerability reporting.
  • Automatically detects weak spots like insecure binaries, outdated components, vulnerable scripts, and hard-coded passwords.
  • Provides detailed firmware insights to help testers focus on critical areas.
  • Requires dependency installation via an installer script before use.
  • Basic command: `sudo ./emba -l ~/log -f ~/firmware -p ./scan-profiles/default-scan.emba`.
  • Supports SBOM generation (`default-sbom.emba`) and system emulation (`default-scan-emulation.emba`).
  • Open to contributions via GitHub (pull requests, issues) with guidelines in CONTRIBUTING/CONTRIBUTORS docs.
AboutLogin