Prepare a Project on Internet of Things Vulnerability Proxy Scanner.

Must be completed with Scala programming language, play framework, Postgres, docker

Overview

This project presents a system to assess the vulnerability of Internet of Things devices to publicly known vulnerabilities listed in the National Vulnerability database (NVD) and enforce policy based the assessment score. The system acts as a proxy that intercepts requests to IoT services registered on the system and send probe scans to the requesting device, the scan results are matched against databases and a vulnerability assessment score is generated.

ScalaTest

ScalaTest is a flexible and popular testing framework for Scala, written in Scala and easy to use with the development tools I will use for my project; Intellij, SBT, and Maven.

Tasks

- Complete Research the area of vulnerability scanning, vulnerability databases, IoT vendor software,

- Setup the development environment, set-up all other requirements; Docker, Github, etc.

Complete implementation of the vulnerability manager

Complete implementation of the database manager and integrate with vulnerability manager

Complete implementation of the scanner manager and integrate with vulnerability manager, scan results should be matched to associated database

Complete implementation of the web and proxy manager and integrate with vulnerability manager, scan manager. Web proxy should be functional, Should be able to initiate scan, execute policy action from vulnerability manager,

Complete implementation of service policy manager and integrate with vulnerability manager, able to register IoT provider, register services, and configure service policies

Complete implementation of associated web front end for IoT user and admin web consoles

Complete implementation of deployment with Docker to AWS and testing of functionality

Complete project report and evaluation