Embrace IoT Security Compliance or Die a Slow Death Introduction IoT Security Compliance. IoT Security Standards. IoT Security Frameworks. All new buzzwords that are picking up steam. So imagine our surprise when we talk to IoT device manufacturers about why they...
How to Compare Two Different Binary Files Introduction One of our favorite new capabilities in the Centrifuge Spring ‘20 release is Firmware Differencing. This is how to compare two binary files quickly and efficiently for Linux, QNX, and VxWorks. But that’s not all...
How to Enforce IoT Security Standards and Compliance National and International IoT Standards We are all aware of the persistent insecurity of IoT devices – for consumers, enterprises and critical infrastructure. To address the threat, a wide variety of...
Identification of the CABLEHAUNT eCos Bug Using GHIDRA ECOS BUG USING GHIDRA In this talk we will show how GHIDRA may be the preferred tool of choice for analyzing RTOS firmware images. We will demonstrate identification of a published vulnerability as a case study....
Supply Chain Risk: The HiSilicon Backdoor The HiSilicon / Xiongmai Backdoor and 3rd Party Component Risk Last week saw a flurry of news about a research report by Vladislav Yarmak describing a backdoor in the firmware of DVR/NVR devices built using the video...
Reverse Engineering My Router’s Firmware with binwalk Author: Sergio Prado (reposted with permission) A few days ago I decided to reverse engineer my router’s firmware image with binwalk. I’ve bought the TP-Link Archer C7 home router. Not one of the best, but...
