HomePWN: IoT device security check

The HomePwn is an open source program that aims to control both home and business networks for security vulnerabilities.



The HomePwn has a modular architecture so that the user can expand his database on different techniques. It is divided into two different categories:

Discovery modules: These modules provide functions related to the stage of network discovery, regardless of the technology to be used. For example, it can be used to scan WiFi via an adapter in monitoring mode, to detect BLE devices, Bluetooth Low-Energy, but what other devices are near us. It can also be used to detect IoT services at home or in the office using protocols such as SSDP or Simple Service Discovery Protocol and MDNS or Multicast DNS.

Specific modules: Today, HomePwn can perform pentest on technologies such as WiFi, NFC or BLE. In other words, there are modules for each of these technologies to which different known exploits are applied or different techniques for assessing the security level of the device being applied and communicating with such technologies.

  django-DefectDojo: vulnerability correlation and security orchestration application

Installation and use

git clone https://github.com/Telefonica/HomePWN

cd HomePWN

sudo ./install.sh

source homePwn/bin/activate

sudo python3 homePwn.py


Application snapshots

HomePwn. Bluetooth Low-Energy PoC & Hacking



HomePwn. Bluetooth Spoofing



HomePwn. NFC Clone


HomePwn. BLE capture on PCAP file (sniffing)


HomePwn. Apple BLE Discovery



Video guides






You can download the program from here.

Registration in iGuRu.gr via email

Your email for sending each new post

Follow us on Google News iGuRu.gr at Google news

Leave a reply

Your email address Will not be published.

  + 10 = 19

Previous Story

LogoToUse: Website for free high quality logo

Next Story

Doomscrolling stuck with negative news?