Offensive IoT Exploitation (Tuesday)

Presented at DEF CON 30 (2022), Aug. 16, 2022, 8 a.m. (540 minutes)

Latest details, requirements, description, cost: https://defcontrainings.myshopify.com/products/trevor-stevado-trevor-hough-nicholas-coad-patrick-ross-offensive-iot-exploitation

Training description:

As IoT becomes more integrated and integral into personal and work lives, there is a growing need to understand the inner workings of IoT devices. The base skills required are the same as many other security disciplines, whether the task is to perform defensive-based penetration testing or gain covert access for evidence or intelligence collection. Testing IoT devices for security bridges several skill sets from application security, operating systems penetration testing, wireless signals analysis, and embedded hardware security. Unfortunately, many courses in this industry deal with each topic individually, either taking a deep dive into hardware hacking, teaching advanced web application security, or teaching exploit development of different microarchitectures. This training is curated to take a step back and look at the bigger picture of IoT security testing, teaching the basics of each skill set to bridge the gaps and enable students to apply modern penetration testing techniques to IoT devices.


Presenters:

  • Nicholas Coad
    • 5+ years in offensive application and network security • 10+ years in network administration and security operations • Contributed to dozens of security assessments (Red Team, VA, Pen Test) • Managed security operations for Fortune 500 company • Winner of the IoT CTF, DEF CON 27 • Member of Pros versus Joes (PvJ) Red Cell • Hacker @ Loudmouth Security
  • Patrick Ross
    • 7+ years in offensive security roles • 10+ years in security architecture • DEF CON 26 Black Badge holder (part of 3-person team) • Member of Pros versus Joes (PvJ) Red Cell • Hacker @ Village Idiot Labs
  • Trevor Stevado
    • 12+ years in offensive application and network security • Led and contributed to over 100 security assessments (Red Team, VA, Pen Test) • DEF CON 26 Black Badge holder (part of 3-person team) • Leads Pros versus Joes (PvJ) Red Cell • Founding Partner & Hacker @ Loudmouth Security
  • Trevor Hough
    • 10+ years in offensive application and network security • Led and contributed to dozens of security assessments (Red Team, VA, Pen Test) • DEF CON 26 Black Badge holder (part of 3-person team) • Member of Pros versus Joes (PvJ) Red Cell • Managing Partner & Hacker @ Loudmouth Security

Similar Presentations: