# Embedded Linux **slug:** `embedded-linux` · **URL:** `/knowledge/glossary/embedded-linux/` · **category:** Embedded OS · **reviewer:** Tatiana ### Definition Embedded Linux is the use of the Linux kernel and a customized userspace as the operating system for an embedded device — IoT gateways, industrial controllers, automotive infotainment systems, robotics platforms, and consumer-grade network equipment. Common build systems include Yocto Project, Buildroot, and OpenWrt. ### What it means Most modern IoT and robotics platforms use Embedded Linux because the hardware can support it (ARM Cortex-A class processors with sufficient memory and storage) and because the ecosystem provides a mature, well-understood foundation. The flip side is that the device inherits the full attack surface of a general-purpose operating system — kernel vulnerabilities, exposed network services, file-system permissions, supply-chain dependencies — without the security operations team that a typical Linux server enjoys. For offensive-security assessment, Embedded Linux testing covers: firmware extraction and analysis (often by binwalk, firmware-mod-kit, or chip-off), kernel-version and CVE mapping, userspace service enumeration (BusyBox surface, custom daemons, exposed ports), authentication and update-mechanism review, and verification of secure-boot integrity if claimed by the manufacturer. ### Related terms - [FreeRTOS](/knowledge/glossary/freertos/) - [Secure boot](/knowledge/glossary/secure-boot/) - [TrustZone](/knowledge/glossary/trustzone/) - [SBOM](/knowledge/glossary/sbom/) ### Authoritative sources - [Yocto Project](https://www.yoctoproject.org/) - [Buildroot](https://buildroot.org/) - [Linux kernel CVE database (linuxkernelcves.com)](https://www.linuxkernelcves.com/) ---