Automatic Security Analysis of IoT Firmware

Presented at BSidesLV 2019, Aug. 6, 2019, 5 p.m. (55 minutes)

While the hacker community has sounded the alarm on IoT security issues in the past several years the companies producing these vulnerable devices often lack the security skills and funds to deal with the problems. What we don't need is another expensive commercial security product. We need Free Software tools. In this talk, we introduce ByteSweep: A Free Software IoT security analysis platform. This platform will allow IoT device makers, large and small, to conduct fully automated security checks before they ship firmware. First, we will walk through our process for firmware extraction, file data enrichment, key and password hash identification, unsafe function use detection, 3rd party component identification and CVE correlation. Then we will demonstrate the ByteSweep platform using the firmware from a couple of wireless security cameras.

Presenters:

• Matt Brown
  Matt Brown works by day as an infosec professional and by night as a Free Software hacker. His interests in IoT security began at his first Defcon (23) where he placed 2nd in the IoT CTF. Today, Matt works as an internal IoT pentester for a major home security company. Matt specializes in IoT pentesting and reverse engineering. When not hacking, you will find Matt serving at his local church or gaming on his PCI passthrough setup.

Similar Presentations:

• Global AppSec - DC 2019 / IoT AppSec: Automatic Security Analysis of IoT Firmware
• DerbyCon 7.0 Legacy (2017) / IoT Security - Executing an Effective Security Testing Process
• Black Hat Europe 2019 / Sneak into Your Room: Security Holes in the Integration and Management of Messaging Protocols on Commercial IoT Clouds