The target – configuring your target-emulated devices
We will now see how to set up mobile and IoT emulated devices.
In terms of functionality, these devices have a more restricted range of operations: usually, IoT devices have very limited computational power, and usually rely on simple web services, stripped out of any rich graphical setting.
Some applications from the OWASP BWA virtual web server can actually mimic this behavior by providing web server application programming interfaces (APIs). We can say that we have already set up some of the environment for web service interaction.
A side note: the OWASP IoT security testing framework and IoTGoat projects
An interesting approach to IoT Security Testing comes, once again, from OWASP: the IoT security testing framework was released this year, and provides a thorough methodology for assessing and testing vulnerabilities in IoT environments, in a similar fashion as in the web application and mobile application...