We tend to think of AppSec and IoT as two separate infosec disciplines. Sure, the domain knowledge, attack vectors, and threat mitigation are not exactly the same in those two worlds. At the same time, as the hardware continues to evolve, we see more and more tiny general purpose computers around us. Many of these tiny computers nowadays run software that is written in a conventional programming language, listen on network ports, process data inputs, and communicate with the outside world. These devices can be attacked just like any other application running on a desktop, on a server, or in the cloud.
In this talk, I am going to tell you a story about my hacking journey that unexpectedly took me from device configuration settings to software reverse engineering, vulnerability discovery, and six new CVEs. Together, we’ll go step by step through reconnaissance, firmware analysis, decompiling, code review, and remote debugging. I’ll also share my experience with the responsible disclosure process. I hope this talk inspires you to apply your general hacking skills to new areas such as IoT, even if you’ve never done that before.
Related Post:
- VRC Change Up – Referee Training – Chapter 10: Robot Skills Challenge & Skills Stop Time
- OMG! 9billion takes to built village 166 in Coin master!( last village 22 billion takes)
- COIN MASTER TRIK- OMG? 60 BILLION COIN VILLAGE COMPLETE VERY HIGH VILLAGE RAIT.!
- OMG 157 se 165 village tak itne coin omg or raid alart start village mastervillage bana le
- ¡¡ ADA WONG EN RE 8 VILLAGE !! Resident Evil 8 Village – La tragedia de Ethan Winters
- ioBroker neue Skills und Cloud ioBroker.iot Custom ioBroker iot IoT Assistants
- Quick Router Exploit at Cyphercon's IOT Village – How to Hack
- ✅GENERATOR FREE BITCOIN BITCOIN CASH BTC HACK EARN BTC BITCOIN HACK SOFTWARE HACK SCRIPT JUNE 2019✅
- Rc 20 Hack | Rc 20 mod |Real Cricket™20 Hack Get Unlimited Tickets & Coins | How to Hack Rc 20
- Real Cricket™20 Hack Get Unlimited Tickets & Coins | Rc 20 Hack | Rc 20 mod |How to Hack Rc 20
