EMBA - Open-Source Firmware Security Testing

Presented at DEF CON 30 (2022), Aug. 12, 2022, noon (115 minutes).

Penetration testing of current embedded devices is quite complex as we have to deal with different architectures, optimized operating systems and special protocols. EMBA is an open-source firmware analyzer with the goal to simplify, optimize and automate the complex task of firmware security analysis.

Audience: Offense (penetration testers) and defense (security team and developers).


Presenters:

  • Pascal Eckmann
    Pascal Eckmann: As a security researcher and developer, I have worked on several internal and Open-Source projects in the areas of fuzzing, firmware analysis and web development. In addition to automated firmware analysis, I have experience in various penetration testing areas including hardware and wireless communication.
  • Michael Messner
    Michael Messner: As a security researcher and penetration tester, I have more than 10 years of experience in different penetration testing areas. In my current position, I'm focused on hacking embedded devices used in critical environments.

Similar Presentations: