PatrIoT provides a four-stage IoT vulnerability research
methodology built on top of four key elements: logical attack
surface decomposition, compilation of top 100 weaknesses,
lightweight risk scoring, and step-by-step penetration testing
guidelines. The proposed methodology is evaluated with multiple IoT
products. The results indicate that PatrIoT allows cyber security
practitioners without much experience to advance vulnerability
research activities quickly and reduces the risk of critical IoT
penetration testing steps being overlooked.
Read more https://packetstormsecurity.com/files/169942/s10207-022-00633-3.pdf