I see you: Hacking Smart Home Cameras

Presented at Canterbury Hacker Camp (2022), Nov. 25, 2022, 4:25 p.m. (Unknown duration)

Earlier this year, I went all-in on an IoT camera system, however I quickly got annoyed at the lack of specific features on the application. So I decided to take matters into my own hands and reverse engineer the cameras, base stations and app - and why not hack them to collect some of that sweet bug bounty cash at the same time? Unfortunately the vendor did a surprising number of things right…

Join me as we peel back the layers of encryption, figure out how these cameras work, and try to offset the monthly subscription with their own money.

Presenters:

• Benjamin Kearns - Lateral Security
  Ben is a reformed Rails developer from Christchurch, and has now been hacking things professionally for over 10 years. In his spare time he spends way too much time doing almost-work-like-things™, such as writing tools to make breaking things easier and testing them on unsuspecting bug bounty participants.

Links:

• https://2022.chcon.nz/speakers/benjamin/

Similar Presentations:

• THOTCON 0x5 (2014) / Eyes on IZON: Surveilling IP Camera Security
• Still Hacking Anyway (SHA2017) / Hands up, don't shoot. Unless with a bodycam.
• Black Hat Asia 2020 Virtual / The Evil of Spy Camera