In this video we look at reverse engineering a basic firmware format of a commonly found IoT camera – and then creating a backdoored firmware that calls back to our command & control server and allows us to remotely control it!
Camera in the video: Wyze Cam v2
Scripts from the video: https://github.com/ghidraninja/wyze_scripts/tree/master
A lot more information on the hardware and software, as well as an awesome custom firmware can be found here: https://github.com/EliasKotlyar/Xiaomi-Dafang-Hacks
My IoT & embedded security training, use code YOUTUBE for 10% off: