Emba is being developed as a firmware scanner that analyzes Linux-based firmware images, regardless of whether the firmware is a single file or has already been extracted. It should help you identify and focus on interesting areas of firmware images.
Although emba is optimized for offline firmware images, it can test both, live systems and extracted images. Additionally, it can also analyze kernel configurations. Emba is designed to assist penetration testers and not as a standalone tool without human interaction. Emba should provide as much information as possible about the firmware, the the tester can decide on focus areas and is responsible for verifying and interpreting the results.
Before running emba make sure, that you have installed all dependencies.
./emba.sh -l ./log -f ./firmware
sudo ./emba.sh -l ./log -f /firmware -D
You can specify some arguments and get more information about usage of emba in the wiki.