Limited Time Offer: Get a $400 Amazon Gift Card with your OnDemand Registration

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

Tech Tuesday Workshop - Hacking IoT: Fun with Firmware

  • Tuesday, November 17, 2020 at 6:00 PM EST (2020-11-17 23:00:00 UTC)
  • Larry Pesce

You can now attend the webcast using your mobile device!

  

Overview

Join us for a fun session of analyzing firmware for a random IoT device, as a sneak peek at the upcoming SEC556: IoT Hacking course! In this workshop we'll learn the gory details of what goes into analyzing the operating system (firmware) for IoT devices. We'll walk through the process, introduce some tools, challenges, tips and tricks. Heck, we'll even do one live to see if we can discover any problems (oh, we will), and provide you the firmware to play along and even give you a few extra samples to tinker with!

System Requirements: If you would like to follow along or explore on your own, you'll need a system with binwalk installed (https://github.com/ReFirmLabs/binwalk). The most recent version of a Slingshot VM (https://www.sans.org/slingshot-vmware-linux/) is recommended.

Firmware for the workshop should be downloaded at https://sansurl.com/pesce-techtuesday-firmware.

Prerequisites: Basic Linux skills.

Speaker Bio

Larry Pesce

Larry is a Senior Security Analyst with InGuardians after a long stint in security and disaster recovery in healthcare, performing penetration testing, wireless assessments, and hardware hacking. He also diverts a significant portion of his attention co-hosting the international award winning security podcast, Paul's Security Weekly, and likes to tinker with all things electronic and wireless, much to the disappointment of his family, friends, warranties, and his second Leatherman Multi-tool. Larry is also co-author of Linksys WRT54G Ultimate Hacking, Using Wireshark and Ethereal, and How to Cheat at Configuring Open Source Security Tools. Larry is an Extra Class Amateur Radio operator (KB1TNF) and enjoys developing hardware and real-world challenges for the Mid-Atlantic Collegiate Cyber Defense Challenge.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.