PETIoT: PEnetration Testing the Internet of Things. (arXiv:2302.04900v1 [cs.CR])

Attackers may attempt exploiting Internet of Things (IoT) devices to operate
them unduly as well as to gather personal data of the legitimate device
owners'. Vulnerability Assessment and Penetration Testing (VAPT) sessions help
to verify the effectiveness of the adopted security measures. However, VAPT
over IoT devices, namely VAPT targeted at IoT devices, is an open research
challenge due to the variety of target technologies and to the creativity it
may require. Therefore, this article aims at guiding penetration testers …

assessment attackers challenge creativity data device devices exploiting internet internet of things iot iot devices may penetration penetration testing personal personal data research security sessions target technologies testing things vapt verify vulnerability vulnerability assessment